PATENT ABSTRACTS OF JAPAN 



(1 1 publication number : 

(43)Date of publication of 
application : 



2000-222360 



1 1 .08.2000 



(51)Int.CI. 



G06F 15/00 
G06F 12/14 
G06F 13/00 
G06K 17/00 
H04L 9/32 



(21 Application 
number : 

(22)Date of filing : 



1 1-024446 (71 Applicant : MATSUSHITA ELECTRIC 

IND CO LTD 

01 .02.1 999 (72)Inventor : SHIBATA AKIO 

TAKAYAMA HISASHI 



(54) METHOD AND SYSTEM FOR AUTHENTICATION AND AUTHENTICATION 

PROCESSING PROGRAM RECORDING MEDIUM 

(57)Abstract: 

PROBLEM TO BE SOLVED: To exclude any illegal access by identifying any legal 
access with a small calculation quantity in single sign on type authentication for 
permitting plural times of access by single user authentication. 
SOLUTION: Secrecy information 4 is shared by a client means 1 and an 
authentication server means 2. The authentication server means 2 issues an 
authentication ticket 5 including collation information obtained by performing an 
irreversible arithmetic operation (f) on the secrecy information 4 (n) times. The 
client means 1 indicates this authentication ticket and presentation information 
obtained by performing an irreversible arithmetic operation (f) on the secrecy 
information 4 (n-k) times to a permission server means 3. The permission server 
means 3 performs the irreversible arithmetic operation (f) on the presented 
information (k) timesand checks whether or not this presented information 
matches the collation information. In this case(k) is increased from 1 to (n) so that 
the authentication ticket 5 can be used for the maximum (n) times of access 
without calculating the next presented information from the past presented 
information. 



CLAIMS 



[Claim(s)] 

[Claim 1]An authentication server means to publish an authentication ticket. 
An approval server means to which use of an authentication ticket is approvedand 
a client means which requires an authentication ticket of said authentication 
server meansand requires use approval of an authentication ticket of said approval 
server means. 

A client means which it is the authentication system provided with the aboveand 
the number of times of effective holds an authentication ticket which is n (n is a 
positive integer)shows thisand asks for use approvalProvide an approval server 
means to which presentation information is required of said client means in 
responseit compares with said authentication ticketand use is approvedand said 
authentication ticketlncluding a ticket identifiercollation informationand the number 
of times of effectivehe is given by attestation child and said collation 
informationPredetermined irreversible arithmetic operation is performed to 
confidential information which said authentication server means and said client 
means share n timesSaid presentation information in case a use count of said 
authentication ticket is k (k is a positive integer below n) performs said 
predetermined irreversible arithmetic operation to said confidential information n-k 
times. 

[Claim 2]The authentication system according to claim 1 wherein said 
authentication server means manages user authentication informationperforms a 
user authentication procedure between said client means and publishes said 
authentication ticket. 

[Claim 3]In a user authentication proceduregenerate a random numberand said 
authentication server means shows thisrequires attestation presentation 
information of said client meansand it said confidential informationThe 
authentication system according to claim 2wherein it performs said predetermined 
irreversible arithmetic operation to connection by said user authentication 
information and said random numbers once or more and said attestation 
presentation information performs said predetermined irreversible arithmetic 
operation to said confidential information n times. 

[Claim 4]Said authentication server means generates a random number in a user 
authentication procedureshows thisand requires attestation presentation 
information of a client meansSaid attestation presentation information is an 
EXCLUSIVE-OR-operation result of what performed said predetermined 
irreversible arithmetic operation to connection by said user authentication 
information and said random numbers once or moreand a random number for 
attestation which said client means generatedThe authentication system according 
to claim 2wherein said confidential information is said random number for 
attestation counted backward from said attestation presentation information. 
[Claim 5]The authentication system according to any one of claims 2 to 4wherein 
said user authentication information is a password entered by user. 
[Claim 6]The authentication system according to any one of claims 2 to 4wherein 



said user authentication information is the common key system encryption key 
held in secrecy. 

[Claim 7]The authentication system according to any one of claims 1 to 6wherein 
said attestation child is a message authorization code. 

[Claim 8]The authentication system according to any one of claims 1 to 6wherein 
said attestation child is a digital signature. 

[Claim 9]The authentication system according to any one of claims 1 to 8wherein 
said predetermined irreversible arithmetic operation is tropism hash operation on 
the other hand. 

[Claim 10]The authentication system according to any one of claims 1 to 9wherein 
said authentication ticket contains a server identifier. 
[Claim 1 1]The authentication system according to any one of claims 1 to 
10wherein said authentication ticket includes the time of the date of issue. 
[Claim 12]Said authentication ticket including a publisher identifier said approval 
server meansWhile carrying out use approvalcollation information of said 
authentication ticketthe number of times of effectivethe time of the date of issuea 
publisher identifierand an attestation child are updatedThe authentication system 
according to claim 11 wherein said collation information is updated by what 
performed said predetermined irreversible arithmetic operation to said confidential 
information n-k times and said number of times of effective is updated by n-k. 
[Claim 13]The authentication system according to any one of claims 1 to 
12wherein said approval server means has managed a use count of said 
authentication ticketshows this and requires presentation information. 
[Claim 14]The authentication system according to any one of claims 1 to 
12wherein said client means has managed a use count of said authentication 
ticketshows this with said authentication ticket and asks for use approval. 
[Claim 15]It has said two or more approval server means and an authentication 
ticket management tool which manages a use count of said authentication 
ticketand said client means has managed a use count of said authentication 
ticketwith said authentication ticketit shows this and asks for use approval. 
Said authentication server means points to shelf registration of said authentication 
ticket to said authentication ticket management tool while publishing said 
authentication ticketand said approval server meansThe authentication system 
according to any one of claims 1 to 1 1 not carrying out use approval when it 
points to renewal of a history of said authentication ticket to said authentication 
ticket management tool in response to presentation of said authentication ticket 
and a rejected note is received from said authentication ticket management tool. 

[Claim 16]Two or more preparations and said client means have managed a use 
count of said authentication ticket for said approval server meansand with said 
authentication ticketthis is shown and it asks for use approval. 
Memorize said authentication server means while it publishes said authentication 
ticketand an issuance history said approval server meansMemorize an update 
historywhile updating said authentication ticketand it refers for a history of said 



authentication ticket to said authentication server means which a publisher 
identifier of said authentication ticket shows in response to presentation of said 
authentication ticketor said approval server meansThe authentication system 
according to claim 12 not carrying out use approval when a rejected note is 
received from said authentication server means or said approval server means. 

[Claim 1 7]It is what said approval server means generates a random number in a 
use approval procedureshows thisand requires presentation informationThe 
authentication system according to any one of claims 14 to 16wherein said 
presentation information in case a use count of said authentication ticket is k is 
an EXCLUSIVE-OR-operation result of what performed said predetermined 
irreversible arithmetic operation to said confidential information n-k timesand said 
random number. 

[Claim 18]An authentication server means to publish an authentication ticket. 
An approval server means to which use of an authentication ticket is approvedand 
a client means which requires an authentication ticket of said authentication 
server meansand requires use approval of an authentication ticket of said approval 
server means. 

An input means from which it is the authentication system provided with the 
aboveand said client means obtains an input of the number of times of effective of 
a user-identification childuser authentication informationa server identifierand an 
authentication ticketTicket holding mechanism which obtains and holds an 
authentication ticket from said authentication server meansand is shown to said 
approval server meansA processing selecting means which acquires existence 
information on an authentication ticket and chooses processing from said ticket 
holding mechanismA hash means to obtain a random number and to perform hash 
operation to these connection from said authentication server means while 
acquiring user authentication information from said input meansA secret memory 
measure which memorizes in secrecy a hash value obtained from said hash 
meansTake out a hash value from said secret memory measureand the number of 
times n of effective (n is a positive integer) is obtained from said input means in a 
user authentication procedureA multi stage hash value which performed and 
obtained hash operation of n stage is sent to said authentication server meansln a 
use approval procedurethe using frequency k (k is a positive integer below n) is 
obtained from said approval server meansAn authentication information storage 
means which possessed a multi stage hash means to send a multi stage hash 
value which performed and obtained hash operation of a n-k stage to said approval 
server means and in which user authentication information was accumulated for 
said authentication server meansThe 2nd multi stage hash means that performs 
n+1 step of hash operation to connection by random number generating means 
which generates a random number and is sent to said client meansand user 
authentication information acquired from said authentication information storage 
means and a random number generated by said random number generating 
meansAn attestation collation means compared with a multi stage hash value 



which obtained a multi stage hash value obtained from said client means by said 
2nd multi stage hash meansa ticket identifier creating means which generates an 
effective ticket identifierand attestation which clocks time and outputs time 
information — a time check — with a means. A ticket identifier obtained from said 
ticket identifier creating meansa multi stage hash value obtained from said 
attestation collation meansa server identifier obtained from said client means and 
the number of times of effectiveand said attestation — a time check — a time 
stamp based on time information acquired from a means. And an attestation child 
is added to connection of a publisher identifier which shows an authentication 
server meansapproval which an attestation child addition means sent to said client 
means as an authentication ticket is providedand said approval server means 
clocks an attestation child verifying means which verifies an attestation child of an 
authentication ticket who got from said client meansand timeand outputs time 
information — a time check — with a means, the validity of a server identifier and 
a time stampand said approval — a time check — with a ticket effective judging 
means which checks the validity of a difference with time information acquired 
from a means. A ticket use management tool which remains with a ticket identifier 
of an authentication ticketand using frequencyand manages the number of times of 
availableThe 3rd multi stage hash means that outputs a secondary multi stage 
hash value which performed and obtained hash operation of k stage from said 
ticket use management tool to a multi stage hash value which obtained the using 
frequency k and was obtained from said client meansAn approval collation means 
which compares a multi stage hash value obtained from said ticket use 
management tool and a secondary multi stage hash value obtained from said 3rd 
multi stage hash means is provided. 

[Claim 19]A server common key memory measure said attestation child addition 
means remembers a common key system encryption key shared between servers 
to beData connecting mechanism which connects a self-identifier storage means 
which memorizes a self-identifierand a ticket identifiera multi stage hash valuethe 
number of times of effectivea time stampa server identifier and a publisher 
identifier obtained from said self-identifier storage meansA connection data hash 
means to perform hash operation to connection data obtained from said data 
connecting mechanismA common key system cryptographer stage which enciphers 
a hash value obtained from said connection data hash means using a common key 
system encryption key obtained from said server common key memory 
measureand is made into an attestation child Attestation child connecting 
mechanism which connects connection data obtained from said data connecting 
mechanism and an attestation child who got from said common key system 
cryptographer stage is providedThe 2nd server common key memory measure that 
memorizes a common key system encryption key which said attestation child 
verifying means shares between serversAttestation child separating mechanism 
which divides an authentication ticket into connection data and an attestation 
childand a data separation means which divides into a ticket identifiera multi stage 



hash valuethe number of times of effectivea time stampa server identifierand a 
publisher identifier connection data obtained from said attestation child separating 
mechanismThe 2nd connection data hash means that performs hash operation to 
connection data obtained from said attestation child separating mechanismThe 
2nd common key system cryptographer stage that enciphers a hash value 
obtained from said 2nd connection data hash means using a common key system 
encryption key obtained from said 2nd server common key memory measureand is 
made into an attestation child for comparisonA publisher identifier collation means 
which confirms that a publisher identifier obtained from said data separation 
means is an effective server identifierThe authentication system possessing a 
comparison means to compare an attestation child for comparison who got from 
said 2nd common key system cryptographer stage with an attestation child who 
got from said attestation child separating mechanism when a collated result 
obtained from said publisher identifier collation means showed validityand to 
output a result according to claim 18. 

[Claim 20]A self-secret key memory measure said attestation child addition means 
remembers a public key system code secret key of an authentication server to be 
in secrecyData connecting mechanism which connects a self-identifier storage 
means which memorizes a seHHdentifierand a ticket identifiera multi stage hash 
valuethe number of times of effectivea time stampa server identifier and a 
publisher identifier obtained from said selfHdentifier storage meansA connection 
data hash means to perform hash operation to connection data obtained from said 
data connecting mechanismA public key system cryptographer stage which 
enciphers a hash value obtained from said connection data hash means using a 
public key system code secret key obtained from said self-secret key memory 
measureand is made into an attestation child Attestation child separating 
mechanism which possesses attestation child connecting mechanism which 
connects connection data obtained from said data connecting mechanismand an 
attestation child who got from said public key system cryptographer stage and 
from which said attestation child verifying means separates an authentication 
ticket into connection data and an attestation childA data separation means which 
separates into a ticket identifiera multi stage hash valuethe number of times of 
effectivea time stampa server identifierand a publisher identifierand outputs 
connection data obtained from said attestation child separating mechanismand the 
2nd connection data hash means that performs hash operation to connection data 
obtained from said attestation child separating mechanismA server public key 
accumulation means which outputs a public key system code public key 
corresponding to a publisher identifier which a public key system code public key 
of an effective server was accumulatedand was obtained from said data separation 
meansA public key system decoding means which decodes an attestation child 
who got from said attestation child separating mechanism using a public key 
system code public key obtained from said server public key accumulation 
meansand is made into a hash value for comparisonThe authentication system 
possessing a comparison means to compare a hash value obtained from said 



connection data hash means with a hash value for comparison obtained from said 
public key system decoding meansand to output a result according to claim 18. 
[Claim 21]Said client means possesses an authentication random number creating 
means and the 1st exclusive OR meansand them said random number generating 
means for attestationln a user authentication proceduregenerate a random number 
for attestationand said 1st exclusive OR meansA disturbance hash value which 
obtained by performing EXCLUSIVE OR operation of a random number for 
attestation obtained from said random number generating means for attestation in 
a user authentication procedure and a hash value obtained from said hash means 
is sent to said authentication server meansMemorize said secret memory measure 
in secrecyand a random number for attestation obtained from said random number 
generating means for attestation said multi stage hash meansTake out a random 
number for attestation from said secret memory measureand the using frequency 
k is obtained from said approval server means in a use approval procedureA multi 
stage hash value which performed and obtained hash operation of a n-k stage is 
sent to said approval server meansSaid authentication server means possesses 
the 2nd hash means and 2nd exclusive OR means instead of said attestation 
collation meansand them said 2nd hash meansPerform hash operation to 
connection by user authentication information acquired from said authentication 
information storage meansand random numbers generated by said random number 
generating meansand said 2nd exclusive OR meansPerform EXCLUSIVE OR 
operation of a hash value obtained from said 2nd hash meansand a disturbance 
hash value obtained from said client meansand a random number for attestation is 
acquiredPerform said 2nd multi stage hash means by random numbers for 
attestation obtained from said 2nd exclusive OR meansand hash operation of n 
stage said attestation child addition meansA ticket identifier obtained from said 
ticket identifier creating meansa multi stage hash value obtained from said 2nd 
multi stage hash meansa server identifier obtained from said client means and the 
number of times of effectiveand said attestation — a time check — a time stamp 
based on time information acquired from a means. And the authentication system 
according to any one of claims 18 to 20 adding an attestation child to connection 
of a publisher identifier which shows an authentication server meansand sending 
to said client means as an authentication ticket. 

[Claim 22]Said approval server means possesses the 3rd hash means and the 2nd 
attestation child addition means instead of said 3rd multi stage hash meansand 
them said 3rd hash meansOutput a secondary multi stage hash value which 
performed and obtained hash operation to a multi stage hash value obtained from 
said client meansand said approval collation meansCompare a multi stage hash 
value obtained from said ticket use management tooland a secondary multi stage 
hash value obtained from said 3rd hash meansand said 2nd attestation child 
addition meansA ticket identifiera server identifierand the remaining using 
frequency which were obtained from said ticket use management toola multi stage 
hash value obtained from said client meansand said approval — a time check — a 
time stamp based on time information acquired from a means. And the 



authentication system according to any one of claims 18 to 21 adding an 
attestation child to connection of a publisher identifier which shows an approval 
server meansand sending to said client means as an authentication ticket. 
[Claim 23]Have the following and said ticket update indication meansGenerate 
authentication ticket history update indication from a ticket identifier and a server 
identifier which were obtained from said attestation child verifying means when a 
decision result obtained from said ticket effective judging means showed 
validityand using frequency obtained from said client meansand it sends to said 
authentication ticket management toolThe using frequency k obtained from said 
client means when an authentication ticket rejected note was not returned from 
said authentication ticket management tooland a multi stage hash value obtained 
from said attestation child verifying means are outputtedGenerate a random 
numbersend said 2nd random number generating means to said client means and 
said 2nd exclusive OR meansand said 2nd exclusive OR meansPerform 
EXCLUSIVE OR operation of a random number obtained from said 2nd random 
number generating meansand a disturbance multi stage hash value obtained from 
said client meansand a multi stage hash value is acquiredSaid 3rd multi stage hash 
means outputs a secondary multi stage hash value which performed and obtained 
hash operation of k stage to a multi stage hash value obtained from said 2nd 
exclusive OR meansSaid authentication ticket management tool remains with a 
ticket identifier and the number of times of effective based on authentication 
ticket shelf registration directions obtained from said authentication server 
meansand a group with using frequency is managedThe authentication system 
according to any one of claims 18 to 21 which checks compatibility with 
authentication ticket history update indication obtained from said approval server 
meansand is characterized by sending an authentication ticket rejected note to 
said approval server means in the case of mismatching. 
One or more approval server means. 

An authentication ticket management tool which manages issue of an 
authentication ticket and Assessment on Search Report by Designated Searching 
Authority is providedSaid authentication ticket management tool remains with a 
ticket identifier and the number of times of effective based on authentication 
ticket shelf registration directions obtained from said authentication server 
meansand a group with using frequency is managedCompatibility with 
authentication ticket history update indication obtained from said approval server 
means is checkedln the case of mismatchingsend an authentication ticket rejected 
note at said approval server meansand said authentication server means 
possesses a ticket registration instruction meansand it said ticket registration 
instruction meansA ticket maintenance management tool which generates 
authentication ticket shelf registration directions from a ticket identifier obtained 
from said ticket identifier creating meansa server identifier obtained from said 
client meansand the number of times of effectiveand is sent to said authentication 
ticket management tooland said client means replaces with said ticket holding 
mechanism. 



Provide the 1st exclusive OR means and said ticket maintenance management 
toolManage using frequencywhile obtaining and holding an authentication ticket 
from said authentication server meansshow them to said approval server 
meansand said multi stage hash meansTake out a hash value from said secret 
memory measureand a multi stage hash value which performed and obtained hash 
operation of n stage in a user authentication procedure is sent to said 
authentication server meansThe using frequency k obtained from said ticket 
maintenance management tool in a use approval procedure is obtainedSend a multi 
stage hash value which performed and obtained hash operation of a n-k stage to 
said 1st exclusive OR meansand said 1st exclusive OR meansA ticket update 
indication means which performs EXCLUSIVE OR operation of a multi stage hash 
value obtained from said multi stage hash meansand a random number obtained 
from said approval server meansand sends a disturbance multi stage hash value of 
a result to said approval server meansand said approval server means replaces 
with a ticket use management tool. 

The 2nd random number generating means and the 2nd exclusive OR means. 

[Claim 24]Provide one or more approval server meansand said authentication 
server means possesses a ticket issue management tooland it said ticket issue 
management toolA ticket identifier obtained from said ticket identifier creating 
meansa server identifier obtained from said client meansand the number of times 
of effective are managedSearch a ticket identifier based on ticket use reference 
obtained from said approval server meansand the compatibility of using frequency 
is checkedA ticket maintenance management tool which sends an authentication 
ticket rejected note at said approval server means in the case of mismatchingand 
said client means replaces with said ticket holding mechanismProvide the 1st 
exclusive OR means and said ticket maintenance management toolManage using 
frequencywhile obtaining and holding an authentication ticket from said 
authentication server meansshow them to said approval server meansand said 
multi stage hash meansTake out a hash value from said secret memory 
measureand a multi stage hash value which performed and obtained hash 
operation of n stage in a user authentication procedure is sent to said 
authentication server meansSend a multi stage hash value which obtained the 
using frequency k obtained from said ticket maintenance management tool in a use 
approval procedureand performed and obtained hash operation of a n-k stage to 
said 1st exclusive OR meansand said 1st exclusive OR meansPerform EXCLUSIVE 
OR operation of a multi stage hash value obtained from said multi stage hash 
meansand a random number obtained from said approval server meansand a 
disturbance multi stage hash value of a result is sent to said approval server 
meansSaid approval server means possesses a renewal management tool of a 
ticket replaced with said ticket use management tooland the 2nd random number 
generating means and 2nd exclusive OR meansand them said renewal management 
tool of a ticketTicket use reference is generated from a ticket identifier and a 
server identifier which were obtained from said attestation child verifying means 



when a decision result obtained from said ticket effective judging means showed 
validityand using frequency obtained from said client meanslt sends to said 
authentication server means or the 2nd approval server means which a publisher 
identifier showsWhen an authentication ticket rejected note is not returned from 
said authentication server means or said 2nd approval server meanswhile 
outputting using frequency obtained from said client meansand a multi stage hash 
value obtained from said attestation child verifying meansWhen a ticket identifiera 
server identifierand the remaining using frequency are managed and ticket use 
reference is received from said 2nd approval server meanscheck the compatibility 
of using frequencyand in the case of mismatchingan authentication ticket rejected 
note is sent at said 2nd approval server meansGenerate a random numbersend 
said 2nd random number generating means to said client means and said 2nd 
exclusive OR meansand said 2nd exclusive OR meansPerform EXCLUSIVE OR 
operation of a random number obtained from said 2nd random number generating 
meansand a disturbance multi stage hash value obtained from said client 
meansacquire a multi stage hash valueand said 2nd hash meansOutput a 
secondary multi stage hash value which performed and obtained hash operation to 
a multi stage hash value obtained from said 2nd exclusive OR meansand said 2nd 
attestation child addition meansA ticket identifiera server identifierand the 
remaining using frequency which were obtained from said ticket management 
meansa multi stage hash value obtained from said 2nd exclusive OR meansand 
said approval — a time check — a time stamp based on time information acquired 
from a means. And the authentication system according to claim 22 adding an 
attestation child to connection of a publisher identifier which shows an approval 
server meansand sending to said client means as an authentication ticket. 
[Claim 25]An authentication server means to publish an authentication ticketand 
an approval server meansto which use of an authentication ticket is approvedln an 
authentication method of an authentication system provided with a client means 
which requires an authentication ticket of said authentication server meansand 
requires use approval of an authentication ticket of said approval server means. 
Include predetermined irreversible arithmetic operation for n (n is positive integer) 
time almsgiving ********** in confidential information which an authentication 
server means and a client means share from an authentication server means to a 
client means. The number of times of effective publishes an authentication ticket 
which is nand it a client meansSaid authentication ticket is shown in an approval 
server meansask for use approvaland to a demand of presentation information on 
an approval server means a client meansWhen a use count of said authentication 
ticket is k (k is a positive integer below n)An authentication method showing the 
result of an operation which performed said predetermined irreversible arithmetic 
operation to said confidential information n-k times as said presentation 
informationand an approval server means's performing said predetermined 
irreversible arithmetic operation to said presentation information k timesand 
identifying coincidence with the result of an operation and said collation 
information. 



[Claim 26]An authentication server means to publish an authentication ticketand 
an approval server meansto which use of an authentication ticket is approvedln an 
authentication method of an authentication system provided with a client means 
which requires an authentication ticket of said authentication server meansand 
requires use approval of an authentication ticket of said approval server means. 
Include predetermined irreversible arithmetic operation for n (n is positive integer) 
time almsgiving ********** j n confidential information which an authentication 
server means and a client means share from an authentication server means to a 
client means. The number of times of effective publishes an authentication ticket 
which is nand it a client meansSaid authentication ticket is shown in an approval 
server meansask for use approvaland to a demand of presentation information on 
an approval server means a client meansWhen a use count of said authentication 
ticket is k (k is a positive integer below n)Show the result of an operation which 
performed said predetermined irreversible arithmetic operation to said confidential 
information n-k times as said presentation informationand an approval server 
meansAn authentication method updating collation information included in said 
authentication ticket to the result of an operation which performed said 
predetermined irreversible arithmetic operation to said confidential information n-k 
times while performing said predetermined irreversible arithmetic operation to said 
presentation information once and identifying coincidence with the result of an 
operation and said collation information. 

[Claim 27]Said authentication server means shows a random number to a client 
means which requires an authentication ticketrequires attestation presentation 
informationand it a client meansShow the result of an operation which performed 
said predetermined irreversible arithmetic operation to connection by user 
authentication information and said random numbers once [ n+] as said attestation 
presentation informationand an authentication server meansSaid predetermined 
irreversible arithmetic operation is performed to connection by user authentication 
information currently held and said random numbers once [ n+]If coincidence with 
the result of an operation and said attestation presentation information is 
checkedthe result of an operation which performed said predetermined irreversible 
arithmetic operation to connection by said user authentication information and 
said random numbers once will be made into said confidential informationThe 
authentication method according to claim 25 or 26 publishing an authentication 
ticket which includes n (n is positive integer) time almsgiving ****** collation 
information for predetermined irreversible arithmetic operation in this. 
[Claim 28]Said authentication server means shows a random number to a client 
means which requires an authentication ticketrequires attestation presentation 
informationand it a client meansAn EXCLUSIVE-OR-operation result of what 
performed said predetermined irreversible arithmetic operation to connection by 
user authentication information and said random numbers once or moreand a 
random number for attestation which a client means generated is shown as said 
attestation presentation informationAn authentication server means counts said 
random number for attestation backward from said attestation presentation 



information using user authentication information currently held and said random 
numberand makes said random number for attestation said confidential 
informationThe authentication method according to claim 25 or 26 publishing an 
authentication ticket which includes n (n is positive integer) time almsgiving 
****** collation information for predetermined irreversible arithmetic operation in 
this. 

[Claim 29]An authenticating processing program recording medium which recorded 
a processing program of an authentication method performed by the 
authentication system according to any one of claims 1 to 24or the authentication 
method according to any one of claims 25 to 28 in form which an electronic 
computer can read. 



DETAILED DESCRIPTION 



[Detailed Description of the Invention] 
[0001] 

[Field of the Invention]. This invention permits access of multiple times with one 
processing in which the validity of a client apparatus accessing a server apparatus 
is judged. Cipher processing in a client apparatus is made unnecessaryand it 
enables it to process also with a device with low computation capability especially 
about single sign-on type an authentication method and an authentication system. 
[0002] 

[Description of the Prior Art]In recent yearsthe server client type system which 
comprises the server apparatus and client apparatus which were connected via 
the network is general with development of digital communication technique. In 
such a server client type systemit is important that it checks that a client 
apparatus and its user have the just authority to access a server apparatusand 
unjust access is made not to be performed. Although what is depended on 
password input is well known as an authentication method which checks this 
access permissionWhile the method of asking for password input whenever it 
accesses is safesince it is inconvenientfor a usera single sign-on [ which raised 
convenience ] type authentication method has come to be used. Generally as such 
a single sign-on type authentication methodTTP (Trusted Third-party Protocol) 
used by a Kerberos authentication system is knownfor example. 
[0003]Hereafterit explainsreferring to Drawings for a conventional single sign-on 
type authentication method. Drawing 23 is a key map showing the outline of a 
conventional single sign-on type authentication methodand drawing 24 is a 
protocol sequence diagram showing a protocol. In drawing 23 and drawing 24t hey 
are a client means in which 81 has a user interfacean authentication server means 
by which 82 performs user authenticationand an approval server means which 83 
judges an access permission and performs use approval. 
[0004]In the user authentication procedure of the client means 81 and the 
authentication server means 82The client means 81 sends authentication demand 



Authenticate Request801 which became also considering the user-identification 
child UID inputted via the user interfaceand the server identifier SID as attestation 
presentation information to the authentication server means 820n the other 
handthe authentication server means 82 returns authentication reply Authorize 
Request802 accompanied by session key SK enciphered considering the password 
PW as a key with authentication ticket Ticket803. 

[0005]In the use approval procedure of the client means 81 and the approval 
server means 83Approval demand Authorize Request804 which became also 
considering the user-identification child UID as whom the client means 81 was 
enciphered by session key SKand the time stamp TSk as presentation information 
is sent to the approval server means 83 with authentication ticket Ticket805On 
the other handthe approval server means 83 verifies the presentation information 
and authentication ticket Ticket805 in authentication demand Authorize 
Request804and if it admits being justit will return notice Resultof approval806. 
[0006]It explains in a conventional single sign-on type authentication method with 
the above protocol sequencesreferring to drawing 25 f or the composition below. 
Drawing 25 is a functional block diagram showing the composition of a 
conventional single sign-on type authentication method. Also in drawing 25 they 
are a client means in which 81 has a user interfacean authentication server means 
by which 82 performs user authenticationand an approval server means which 83 
judges an access permission and performs use approval. 

[0007]The 1st transmission and reception means 31 1 in which the client means 81 
transmits and receives dataThe input means 81 1 which obtains the input from a 
userand the session key decoding means 812 which decodes the received session 
keyThe ticket holding mechanism 314 holding the received authentication 
ticketand the processing selecting means 315 which chooses processing according 
to the holding state of an authentication ticketthe secret memory measure 316 
which memorizes the decoded session key in secrecyand the proof which clocks 
time — a time check — it comprises the means 813 and the certification 
information cryptographer stage 814 which enciphers attested certification 
information using a session key. 

[0008]The 2nd transmission and reception means 321 in which the authentication 
server means 82 transmits and receives datathe attestation which clocks time 
a time check — with the means 322 and the authentication information storage 
means 323 in which the user authentication information of a password etc. was 
accumulated. It comprises the session key creating means 821 which generates an 
encryption key for every user authentication processingthe session key 
cryptographer stage 822 which enciphers a session key using a passwordand the 
ticket cryptographer stage 823 which enciphers an authentication ticket using a 
session key. 

[0009]The 3rd transmission and reception means 331 in which the approval server 
means 83 transmits and receives datathe approval which clocks time — a time 
check — with the means 332 and the ticket decoding means 831 which decodes 
an authentication ticket. The ticket effective judging means 832 which performs 



the validity judging of an authentication ticketlt comprises the approval collation 
means 835 which carries out comparative collation of the certification information 
decoding means 833 which decrypts attested certification informationthe 
certification information effective judging means 834 which performs the validity 
judging of attested certification informationand the contents of the authentication 
ticket and the contents of attested certification information. 
[0010]It explains in the conventional single sign-on type authentication method 
constituted as mentioned abovereferring to drawing 26 f or the operation below. 
Firstin the client means 81 The user-identification child UID who shows the user 
itselfthe password PW for user authentication beforehand registered into the 
authentication server means 82and the server identifier SID of the object which 
obtains use approval are inputted into the input means 81 1 as the user input 800 
(ST3101ST8101). The input means 811 takes out the server identifier 31 01 and 
sends it to the ticket holding mechanism 314 while it holds the user input 800 
temporarily. The ticket holding mechanism 314 searches the authentication ticket 
data corresponding to the server identifier 3101 (ST3102)and sends the notice 
3102 of search results to the processing selecting means 315. When the notice 
3102 of search results shows non-**the processing selecting means 315When the 
user authentication processing starting information 8101 is sent to said input 
means 811 and owner ** is shownthe use approval procedure starting information 
8102 is sent to said ticket holding mechanism 314the secret memory measure 
316and the certification information cryptographer stage 814 (ST3103). 
[0011]If the user authentication starting information 8101 is givensaid input means 
81 1 The group 8103 of the user-identification child and server identifier which were 
taken out from the user input 800 held temporarily is sent to the authentication 
server means 82 as authentication demand Authenticate Request801 via the 1st 
transmission and reception means 311 (ST8102)The user-identification child 8104 
is seen off in the certification information cryptographer stage 814and the 
password 8105 is sent to the session key decoding means 812. 
[0012]In the authentication server means 82authentication demand Authenticate 
Request801 is received by the 2nd transmission and reception means 321 The 
taken-out user-identification child 8201 is seen off in the authentication 
information storage means 323 and the ticket cryptographer stage 823and the 
server identifier 8202 is sent to the ticket cryptographer stage 823 (ST8201). The 
authentication information storage means 323 searches the password 
corresponding to the user-identification child 8201 (ST8202)In beingit sends the 
password 8203 to the session key cryptographer stage 822and the notice 8204 of 
search results is sent to the session key creating means 821 and the session key 
cryptographer stage 822 (ST8203). When the notice 8204 of search results shows 
owner **the session key creating means 821 newly generates the random session 
key 8205and sends it to the session key cryptographer stage 822 and the ticket 
cryptographer stage 823 (ST8204). When the notice 8204 of search results shows 
owner **the session key cryptographer stage 822The encryption session key 8206 
which enciphered the session key 8205 using the password 8203 is generated 



(ST8205)This is sent to the client means 81 as authentication reply Authenticate 
Response802 via the 2nd transmission and reception means 321 (ST8207). 
attestation — a time check — the means 322 has clocked current time. 
The time stamp 3212 based on current time is supplied to the ticket cryptographer 
stage 823. 

Hold the ticket cryptographer stage 823 inside and the server common key 
corresponding to the server identifier 8202 is usedThe authentication ticket data 
8207 which enciphered the user-identification child 8201the server identifier 
8202the time stamp 3212and the session key 8205 is generated 
(ST8202ST8206)This is sent to the client means 81 as authentication ticket 
Ticket803 via the 2nd transmission and reception means 321 (ST8207). 
[0013]In the client means 81 authentication reply Authenticate Response802 is 
sent to the session key decoding means 812 as the encryption session key 8106 
via the 1st transmission and reception means 31 1 Authentication ticket Ticket803 
is sent to said ticket holding mechanism 314 as the authentication ticket data 
8108 via the 1st transmission and reception means 31 1 (ST8103). Said ticket 
holding mechanism 314 matches the authentication ticket data 8108 with the 
server identifier 31 01 and holds it (ST3112). The session key decoding means 812 
decrypts the encryption session key 8106 using the password 8105 (ST8104). 
Thereforeonly when a right password is entereda right session key can be obtained. 
The session key 8107 obtained by the session key decoding means 812 is sent to 
the secret memory measure 316and is memorized. 

[0014]The secret memory measure 316 sends the memorized session key 8109 to 
the certification information cryptographer stage 814when the session key 8107 is 
memorized in secrecyonly predetermined access is permitted and the use approval 
procedure starting information 8102 is given (ST8105). proof — a time check — 
the means 813 has clocked current time. 

The time stamp 81 10 based on current time is supplied to the certification 
information cryptographer stage 814. 

If the use approval procedure starting information 8102 is giventhe certification 
information cryptographer stage 814The attested certification information 81 1 1 
which enciphered the user-identification child 8104 and the time stamp 81 10 using 
the session key 8109 is generated (ST8106)This is sent to the approval server 
means 83 as approval demand Authorize Request804 via the 1st transmission and 
reception means 311 (ST8107). If the use approval procedure starting information 
8102 is givensaid ticket holding mechanism 314The held authentication ticket data 
81 12 corresponding to the server identifier 3101 is sent to the approval server 
means 83 as authentication ticket Ticket805 via the 1st transmission and 
reception means 311 (ST8107). 

[0015]In the approval server means 83approval demand Authorize Request804 is 
sent to the certification information decoding means 833 as the attested 
certification information 8308 via the 3rd transmission and reception means 
331 Authentication ticket Ticket805 is sent to the ticket decoding means 831 as 
the authentication ticket data 8301 via the 3rd transmission and reception means 



331 (ST8301). The ticket decoding means 831 decrypts the authentication ticket 
data 8301 using the self-server common key held insideThe user-identification 
child 8302 and the server identifier 8303 which were obtainedand the time stamp 
8304 are sent to the ticket effective judging means 832and the session key 8305 
is sent to the certification information decoding means 833 (ST8302). approval 
a time check — the means 332 has clocked current time. 

The current time information 8306 is supplied to the ticket effective judging means 
832 and the certification information effective judging means 834. 
While the ticket effective judging means 832 performs the coincidence decision of 
the server identifier 8303 and the self-server identifier held insidelt confirms that 
the difference of the time stamp 8304 and the current time information 8306 is 
within the limits of the predetermined term of validityand when all are truththe 
user-identification child 8302 is made into the ticket user-identification child 
8307and is seen off in the approval collation means 835 (ST3306ST3307). The 
user-identification child 8309 and the time stamp 8310 which were produced by 
the certification information decoding means 833 decrypting the attested 
certification information 8308 using the session key 8305 are sent to the 
certification information effective judging means 834 (ST8303). Since attested 
certification information is enciphered using the session key by the client 
meansonly when a right session key is used by a client meansa right user- 
identification child and a time stamp are obtained here. The certification 
information effective judging means 834 confirms that the difference of the time 
stamp 8310 and the current time information 8306 is within the limits of a 
predetermined time lagWhen it is truththe user-identification child 8309 is made 
into the proof user-identification child 831 land is seen off in the approval collation 
means 835 (ST8304ST8305). The approval collation means 835 performs the 
coincidence decision of the ticket user-identification child 8307 and the proof 
user-identification child 8311 (ST8306)If it is truththe notice 8312 of approval will 
be sent to the client means 81 as notice Resultof approval806 via the 3rd 
transmission and reception means 331 (ST8307ST331 7)and it is received in the 
client means 81 (ST31 18). When a coincidence decision becomes truth at this 
timethe user-identification child and the time stamp are obtained correctlyThis 
shows that the right session key was used by the client meansand since this 
means that the right password was entereda user authentication result and its use 
approval result will correspond. 
[0016] 

[Problem(s) to be Solved by the Invention]Howeversince cipher processing which 
needs great computational complexity in the above-mentioned conventional 
composition is used abundantly and it is necessary to perform cipher processing 
at every use approval processing by a client side especiallyWhen client sides were 
a personal digital assistant and a device with low computation capability like a 
smart phoneit had SUBJECT that it was difficult to perform use approval 
processing by practical processing time. 

[0017]Since the use count of one authentication ticket is not restricted in the 



above-mentioned conventional composition but it is only having provided the term 
of validityEven if the code of the authentication ticket intercepted by the third 
party should have been decoded and unjust access was performedit also had 
SUBJECT that a possibility of finishing without being discovered was high. 
[0018]This invention solves such conventional SUBJECT. 
The purpose does not need cipher processing in a client sidebut even if it is a 
device with low computation capabilityuse approval processing can be performed 
by practical processing timelt is providing single sign-on type the authentication 
method and authentication system which can manage the use count of an 
authentication ticket easily. 

[0019] 

[Means for Solving the Problem]A client means which this invention holds an 
authentication ticket whose number of times of effective is n (n is a positive 
integer) to the Istshows thisand asks for use approval in order to solve this 
SUBJECTCompare with said authentication ticketin responserequire presentation 
informationprovide with an approval server means which carries out use 
approvaland said authentication ticketHe is given by attestation child including a 
ticket identifiercollation informationthe number of times of effectivethe time of the 
date of issueand a server identifierand said collation informationPredetermined 
irreversible arithmetic operation is performed to confidential information which a 
publisher and said client means of said authentication ticket share n timesSaid 
presentation information in case a use count of said authentication ticket is k (k is 
a positive integer below n) is characterized by performing said predetermined 
irreversible arithmetic operation to said confidential information n-k times. 
[0020]Single sign-on type an authentication method and an authentication system 
which cannot need cipher processing in a client sidebut can manage a use count 
of an authentication ticket easily by thisand can eliminate double use are obtained. 
[0021]Said authentication server means generates a random number in a user 
authentication procedureand this is shown in the 2ndrequire attestation 
presentation information of a client meansand said confidential informationSaid 
predetermined irreversible arithmetic operation is performed to connection by said 
user authentication information and said random numbers once or moreand said 
attestation presentation information is characterized by performing said 
predetermined irreversible arithmetic operation to said confidential information n 
times. 

[0022]thereby — the above-mentioned effect — in additioncipher processing in a 
client side is not needed in a user authentication procedureand also single sign-on 
type an authentication method and an authentication system which can 
communalize data processing of attestation presentation information and data 
processing of presentation information are obtained. 

[0023] Said authentication server means generates a random number in a user 
authentication procedureand this is shown in the 3rdrequire attestation 
presentation information of a client meansand said attestation presentation 



informationlt is an EXCLUSIVE-OR-operation result of what performed said 
predetermined irreversible arithmetic operation to connection by said user 
authentication information and said random numbers once or moreand a random 
number for attestation which a client means generatedand said confidential 
information is characterized by being said random number for attestation counted 
backward from said attestation presentation information. 
[0024]Therebyit adds to the above-mentioned effectand since collation 
information included in an authentication ticket becomes unrelated to user 
authentication informationsingle sign-on type a safer authentication method and 
an authentication system which even a possibility that user authentication 
information will be guessed does not have are obtained from an authentication 
ticket. 

[0025]It is characterized by on the other hand said predetermined irreversible 
arithmetic operation being tropism hash operation the 4th. 

[0026]Therebyin addition to the above-mentioned effecteven if a client side is a 
device with low computation capabilitysingle sign-on type an authentication 
method and an authentication system which can perform use approval processing 
by practical processing time are obtained. 

[0027]To the Sthsaid authentication ticket including a publisher identifier said 
approval server meansWhile carrying out use approvalupdate collation information 
of said authentication ticketthe number of times of effectivethe time of the date 
of issuea publisher identifierand an attestation childand said collation informationlt 
is what performed said predetermined irreversible arithmetic operation to said 
confidential information n-k timesand is updatedand said number of times of 
effective is characterized by being updated by n-k. 

[0028]Since it is updated in addition to the above-mentioned effect by this 
whenever it uses an authentication ticketespecially a time stamp is updated and 
the term of validity in an effective judging can be set up shorterSingle sign-on 
type an authentication method and an authentication system which possibility of 
an unauthorized use by a third party can be made smallerand can shorten 
response time of use approval further are obtained. 

[0029]To the 6thsaid client means has managed a use count of said authentication 
ticketlt is what shows this and asks for use approval with said authentication 
ticketHave an authentication ticket management tool which manages a use count 
of two or more preparations and said authentication ticket for said approval server 
meansand said authentication server meansWhile publishing said authentication 
ticketpoint to shelf registration of said authentication ticket to said authentication 
ticket management tooland said approval server meansWhen it points to renewal 
of a history of said authentication ticket to said authentication ticket management 
tool in response to presentation of said authentication ticket and a rejected note 
is received from said authentication ticket management toolit is characterized by 
not carrying out use approval. 

[0030]thereby — the above-mentioned effect — in additionin a system by which 
an authentication ticket is not updatedsince it becomes possible to use an 



authentication ticket in common to two or more approval serverssingle sign-on 
type an authentication method and an authentication system with higher 
convenience are obtained. 

[0031 ]To the 7thsaid client means has managed a use count of said authentication 
ticketWith said authentication ticketthis is shownask for use approvaland said 
approval server means two or more preparations and said authentication server 
meansMemorize an issuance historywhile publishing said authentication ticketand 
said approval server meansMemorize an update historywhile updating said 
authentication ticketand it refers for a history of said authentication ticket to said 
authentication server means which a publisher identifier of said authentication 
ticket shows in response to presentation of said authentication ticketor said 
approval server meansWhen a rejected note is received from said authentication 
server means or said approval server meansit is characterized by not carrying out 
use approval. 

[0032]thereby — the above-mentioned effect — in additionin a system by which 
an authentication ticket is updatedsince the decentralized administration of the 
use of an authentication ticket can be carried outsingle sign-on type an 
authentication method and an authentication system which can lessen one 
management resource more are obtained. 
[0033] 

[Embodiment of the Invention]Hereafterit explainsreferring to Drawings for an 
embodiment of the invention. 

[0034](A 1st embodiment) The authentication system of a 1st embodiment 
comprises the client means 1 with a user interfacean authentication server means 
2 to perform user authenticationand the approval server means 3 that judges the 
access permission of the client means 1 and performs use approvalas shown in 
drawing 1 . Can use a general purpose computera Personal Digital Assistanta smart 
phoneetc. for the client means 1for exampleand for the authentication server 
means 2. For examplea general purpose computeran exclusive authentication 
server deviceetc. can be usedand a general purpose computeran exclusive 
approval server apparatusan exclusive information providing deviceetc. can be 
used for the approval server means 3. 

[0035]It is connected by a cable or the wireless communication network between 
the client means 1 and the approval server means 3. Although not necessarily 
connected between the client means 1 and the authentication server means 2 in a 
communication networkit is necessary to share the confidential information 4. As 
this confidential information 4a passworda common key system encryption keyor 
the calculated value computed from them is usedfor example. 
[0036]The client means 1 holds the authentication ticket 5 used in a use approval 
procedure. The authentication server means 2 publishes this to the client means 
land the authentication server means 2 makes collation information the result of 
having performed irreversible arithmetic operation f to the confidential information 
4 n times (n is the number of times of effective of an authentication tickeOadds an 
attestation child to thisand generates the authentication ticket 5. An attestation 



child is added for the purpose of the prevention from an alteration of an 
authentication ticketand a publisher's proofand can use a message authorization 
codea digital signatureetc. 

[0037]In the use approval procedure of the client means 1 and the approval server 
means 3the result to which the client means 1 performed irreversible arithmetic 
operation f to the confidential information 4 in the n-k time (k is a use count in 
the use approval procedure of an authentication ticket) is used as the 
presentation information 6. As long as the irreversible arithmetic operation f has 
sufficiently safe irreversibilitythe length of a resultand random naturesince the 
third party who does not know the confidential information 4 cannot calculate this 
presentation information 6it is shown that it is a valid user which gets to know the 
confidential information 4 using this presentation information 6. Since many 
number of times of the irreversible arithmetic operation f in presentation 
information is performed so that it went back in the past and the following 
presentation information is also incalculable from this presentation information 
6there is also no necessity for encryption. 

[0038]Send the client means 1 to the approval server means 3 with the 
authentication ticket 7 currently heldand this presentation information 6 to this 
the approval server means 3A check in agreement with the collation information 
which the authentication ticket 7 includes is performedand the result of having 
carried out irreversible arithmetic operation f to the presentation information 6 k 
times with an attestation child's verification which the authentication ticket 7 
includes will return the notice 8 of approvalif it admits being just. 
[0039]By this methodthe client means 1 can obtain use approval to n times using 
the authentication ticket 7without revealing the confidential information 4 to a 
third party including the approval server means 3. 

[0040]Thusthe authentication system of this embodiment is provided with the 
following. 

The client means which the number of times of effective holds the authentication 
ticket which is n (n is a positive integer)shows thisand asks for use approval. 
The approval server means which requires presentation information in 
responsecompares with said authentication ticketand carries out use approval. 

[0041]Informationincluding a server identifier etc.other than collation information 
can be included in said authentication ticket at the time of a ticket identifierthe 
number of times of effectiveand the date of issueand an attestation child is given 
to this. Collation information is information which performed predetermined 
irreversible arithmetic operation to the confidential information which the publisher 
and client means of an authentication ticket share n times. Said presentation 
information is information which performed predetermined irreversible arithmetic 
operation to said confidential information n-k timeswhen the use count of an 
authentication ticket is k (k is a positive integer below n). 

[0042] Single sign-on type the authentication method and authentication system 
which cannot need cipher processing in a client sidebut can manage the use count 



of an authentication ticket easilyand can eliminate double use by such composition 
are obtained. 

[0043](A 2nd embodiment) In the authentication system of a 2nd embodimenta 
client means shows attestation presentation information to the authentication 
server means 22and requires an authentication ticket. 
[0044]The client means 1 1 in which this authentication system has a user 
interface as shown in drawing 2 An authentication server means 1 2 to perform user 
authenticationand the approval server means 3 which judges the access 
permission of the client means 1 1 and performs use approval are comprisedand it 
is connected by the cable or the wireless communication network between the 
client means 11 the authentication server means 12and the approval server means 
3. This approval server means 3 is the same as that of a 1st embodiment ( drawing 
l)there isand againThe authentication ticket returned to the client means 1 1 from 
the authentication server means 12It is the same as that of a 1st embodiment 
( drawing 1 ) also about the presentation information which the client means 1 1 
transmits to the approval server means 3 and an approval ticketand the notice 8 
of approval further returned to the client means 1 1 from the approval server 
means 3. 

[0045]The client means 11 and the authentication server means 12 of this 
authentication system share the result of having performed irreversible arithmetic 
operation f to connection by the password PW entered via the user interfaceand 
the random numbers R obtained from the authentication server means 12 onceas 
the confidential information 14. As long as the irreversible arithmetic operation f 
has sufficiently safe irreversibilitythe length of a resultand random naturethe third 
party who does not know the password PW cannot calculate this confidential 
information 14. 

[0046]In the user authentication procedure of the client means 1 1 and the 
authentication server means 12the authentication server means 12 generates a 
random numberthis is shownand attestation presentation information is required of 
the client means 11. The client means 11 computes the confidential information 14 
by performing irreversible arithmetic operation f to connection by the random 
numbers R obtained from the password PW and the authentication server means 
1 2 oncelt sends to the authentication server means 1 2 by making into the 
attestation presentation information 13 the result of having performed irreversible 
arithmetic operation f to this confidential information 14 further n times (n+1 total 
and n are the number of times of effective of an authentication ticket). 
[0047]On the other handa check of that the confidential information 14 of the 
authentication server means 12 corresponds from the attestation presentation 
information 13 will return the authentication ticket 5 which added the attestation 
child to this by making into collation information the result of having performed 
irreversible arithmetic operation f to the confidential information 14 n times. The 
client means 1 1 is held in order to use this in a use approval procedure. An 
attestation child is added for the purpose of the prevention from an alteration of 
an authentication ticketand a publisher's proofand can use a message 



authorization codea digital signatureetc. 

[0048]In the use approval procedure of the client means 11 and the approval 
server means 3the result to which the client means 1 1 performed irreversible 
arithmetic operation f to the confidential information 14 in the n-k time (k is a use 
count in the use approval procedure of an authentication ticket) is used as the 
presentation information 6. As long as the irreversible arithmetic operation f has 
sufficiently safe irreversibilitythe length of a resultand random naturesince the 
third party who does not know the confidential information 14 cannot calculate 
this presentation information 6it is shown that it is a valid user which gets to know 
the confidential information 14 using this presentation information 6. Since many 
number of times of the irreversible arithmetic operation f in presentation 
information is performed so that it went back in the past and the following 
presentation information is also incalculable from this presentation information 
6there is also no necessity for encryption. 

[0049]Verification of the attestation child who sends the client means 1 1 to the 
approval server means 3 with the authentication ticket 7 holding this presentation 
information 6 and in whom the authentication ticket 7 includes the approval server 
means 3 to thisThe result of having carried out irreversible arithmetic operation f 
to the presentation information 6 k times performs a check in agreement with the 
collation information which the authentication ticket 7 includesand if it admits 
being justthe notice 8 of approval will be returned. 

[0050]By this methodthe client means 1 1 can obtain use approval to n times using 
the authentication ticket 7without revealing the confidential information 14 and the 
password PW to a third party including the approval server means 3. 
[0051]Thusin the authentication system of this embodimentan authentication 
server means generates a random number in a user authentication 
procedureshows thisand requires attestation presentation information of a client 
means. As confidential information at this timewhat performed predetermined 
irreversible arithmetic operation to connection by user authentication information 
and random numbers once or more is usedand what performed predetermined 
irreversible arithmetic operation to this confidential information n times as 
attestation presentation information is shown. 

[0052]such composition — the effect of a 1st embodiment — in additionalso in a 
user authentication procedurecipher processing in a client side is unnecessaryand 
single sign-on type the authentication method and authentication system which 
can communalize data processing of attestation presentation information and data 
processing of presentation information are obtained. 
[0053](A 3rd embodiment) As shown in drawing 3t he random number for 
attestation generated by the client means 21 is shared between the client means 
21 and the authentication server means 22 as the confidential information 24 by 
the authentication system of a 3rd embodiment. 

[0054]In this systemin a user authentication procedurethe authentication server 
means 22 generates a random numberthis is shownand attestation presentation 
information is required of the client means 21 . The client means 21 is sent to the 



authentication server means 22 by making into the attestation presentation 
information 23 the exclusive OR result of the result of having performed 
irreversible arithmetic operation f to connection by the random numbers R 
obtained from the password PW and the authentication server means 22 onceand 
the confidential information 24 which the client means 21 generated in secrecy. In 
drawing 3 the sign "@" shows the exclusive OR (EXOR) operation. 
[0055]On the other handthe authentication server means 22 is counted backward 
from the attestation presentation information 23the password PWand the random 
number Rand asks for the confidential information 25. And irreversible arithmetic 
operation f is performed to this confidential information 25 n timesthat result of an 
operation is made into collation informationand the authentication ticket 5 which 
added the attestation child to this is returned to the client means 21. The client 
means 21 is held in order to use this in a use approval procedure. 
[0056]Supposing the attestation presentation information 23 is suitably made from 
a third party with an inaccurate userEven if it can obtain the authentication ticket 
5 by the client means 21the client means 21 does not understand the confidential 
information 25 which the server counted backward using the password PW and the 
random number R from the attestation presentation information 23. Thereforethe 
unjust access can be eliminated in a following use approval procedure. 
[0057]In the use approval procedure of the client means 21 and the approval 
server means 3the result to which the client means 21 performed irreversible 
arithmetic operation f to the confidential information 24 in the n-k time (k is a use 
count in the use approval procedure of an authentication ticket) is used as the 
presentation information 6. As long as the irreversible arithmetic operation f has 
sufficiently safe irreversibilitythe length of a resultand random naturesince the 
third party who does not know the confidential information 24 cannot calculate 
this presentation information 6it is shown that it is a valid user which gets to know 
the confidential information 24 using this presentation information 6. Since many 
number of times of the irreversible arithmetic operation f in presentation 
information is performed so that it went back in the past and the following 
presentation information is also incalculable from this presentation information 
6there is also no necessity for encryption. 

[0058]Verification of the attestation child who sends the client means 21 to the 
approval server means 3 with the authentication ticket 7 holding this presentation 
information 6 and in whom the authentication ticket 7 includes the approval server 
means 3 to thisThe result of having carried out irreversible arithmetic operation f 
to the presentation information 6 k times performs a check in agreement with the 
collation information which the authentication ticket 7 includesand if it admits 
being justthe notice 8 of approval will be returned. 

[0059]By this methodthe client means 21 can obtain use approval to n times using 
the authentication ticket 7without revealing the confidential information 24 and the 
password PW to a third party including the approval server means 3. 
[0060]Thusin the authentication system of this embodimentan authentication 
server means generates a random number in a user authentication 



procedureshows thisand requires attestation presentation information of a client 
means. Attestation presentation information is an EXCLUSIVE-OR-operation 
result of what performed predetermined irreversible arithmetic operation to 
connection by user authentication information and said random numbers once or 
moreand the random number for attestation (confidential information) which the 
client means generatedand this confidential information is counted backward from 
attestation presentation information by an authentication server means. 
[0061]By such compositionthe collation information which an authentication ticket 
includes becomes unrelated to user authentication information. Thereforesingle 
sign-on type a safe authentication method and authentication system are obtained 
rather than even a possibility that user authentication information will be guessed 
from an authentication ticket cannot be found. 

[0062](A 4th embodiment) A 4th embodiment explains the block configuration of 
each means to perform the concrete communication procedure and it in the 
authentication system of a 2nd embodiment. 

[0063] Drawing 4 is a protocol sequence diagram showing the protocol in this 
system. In drawing 4 the client means in which 31 has a user interfacean 
authentication server means by which 32 performs user authenticationand the 
approval server means which 33 judges an access permission and performs use 
approval are shownand the sign "S (K|-)" shows the attestation child attachment 
function which used the key K. 

[0064]In the user authentication procedure of the client means 31 and the 
authentication server means 32Firstthe client means 31 sends authentication 
demand Authenticate Request301 accompanied by the user-identification child 
UID and the server identifier SID which were inputted via the user interface to the 
authentication server means 32. At this timeauthentication demand Authenticate 
Request301 is good also as a thing accompanied by the number of times n of 
effective of an authentication ticket. When that is not rightan authentication 
server shall just define the number of times n of effective fixed. 
[0065]On the other handthe authentication server means 32 returns attestation 
challenge Challenge302 accompanied by the random number RO generated so that 
it might differ each time. The client means 31 which received this returns 
attestation challenge answer Response303 accompanied by the result of having 
given n+1 step of hash operation H to connection by the password PW and the 
random number RO which were inputted via the user interfaceOn the other handif 
the authentication server means 32 carries out comparison verification of the 
n+1 -step hash operation result in challenge answer Response303and the n+1 -step 
hash operation result performed itself and is in agreementit will admit being 
justAuthentication ticket Ticket304 to which the attestation child was added with 
the publisher identifier IID which shows ticket identifier TID and n+1 -step hash 
operation resulttime stamp TSOserver identifier SIDand authentication server 32 
self is returned. [ which were newly generated ] The client means 31 is held in 
order to use this in a use approval procedure. 

[0066]In the use approval procedure of the client means 31 and the approval 



server means 33the client means 31 sends the approval demand Authorize 
Request and authentication ticket Ticket305 to the approval server means 33. At 
this timethe approval demand Authorize Request is good also as a thing 
accompanied by the user-identification child UID. On the other handthe approval 
server means 33 returns approval challenge Challenge306 accompanied by the 
value k based on the use count of this authentication ticket. The client means 31 
which received this returns approval challenge answer Response307 accompanied 
by the result of having given hash operation [ of +one step of n-k ] H to 
connection by the password PW and the random numbers RO. 
[0067]Since this hash operation H cannot calculate this hash operation result for 
the sufficiently safe third party who does not know the password PW and the 
random number RO as long as iton the other handhas tropismthe length of a 
resultand random naturelt is shown that it is a valid user which gets to know the 
password PW by this hash operation result. Since many number of stageses of 
hash operation H are performed so that it went back in the past and the following 
hash operation result is also incalculable from this hash operation resultthere is 
also no necessity for encryption. As such hash operation H [ like ]algorithmssuch 
as MD5 and SHAcan be usedfor example. 

[0068]On the other handthe approval server means 32 carries out comparison 
verification of the result of having performed hash operation of k stage to the +1 
step of n-k hash operation result in approval challenge answer Response307 
furtherand the n+1-step hash operation result in authentication ticket Ticketlf in 
agreementit will admit being just and notice Resultof approval308 will be returned. 
At this timethe notice 308 of approval is good also as a thing simultaneously 
accompanied by the information Info to which access was permitted by use 
approval. 

[0069]By the above protocol sequencesthe client means 31 can obtain use 
approval to n times using the authentication ticket 304without revealing the 
password PW to a third party including the approval server means 33. 
[0070]It explains referring to the functional block diagram of drawing 5 for the 
composition with such a protocol sequence of an authentication system. 
[0071]In drawing 5 they are a client means in which 31 has a user interfacean 
authentication server means by which 32 performs user authenticationand an 
approval server means which 33 judges an access permission and performs use 
approval. 

[0072]The client means 31 is provided with the following. 

The 1st transmission and reception means 31 1 that transmits and receives data. 
The input means 312 which obtains the input from a user. 
A hash means 313 to connect two inputs and to perform hash operation H. 
The ticket holding mechanism 314 holding the received authentication ticketand 
the processing selecting means 315 which chooses processing according to the 
holding state of an authentication ticketA multi stage hash means 317 to perform 
hash operation of the secret memory measure 316 which memorizes a hash 
operation result in secrecyand the given number of stages or the number of 



stages of the difference of two given numerical values. 

[0073]According to the kind of communication networkthe 1 st transmission and 
reception means 311 For exampleLAN interface devicessuch as a LAN 
cardTelephone interfacing unitssuch as ISDN interface devicessuch as a terminal 
adopterand a modemlt is good also as composition which comprises infrared ray 
interface devicessuch as wireless interface devicessuch as a portable data 
communication card and a PIAFS cardand an IrDA moduleetc.and uses these some 
properly according to a communications partner. The input means 312 comprises 
pointing devices and selection buttonssuch as character input devicessuch as a 
keyboard and a ten keya mousea trackballand a pen tabletcombination of a dial 
and a display screenor a touch panelfor example. The hash means 313 is 
constitutedfor example combining a logic circuit and the arithmetic circuit 
incorporating the algorithm of hash operation H. As for the ticket holding 
mechanism 314a memory circuit is usedfor example. A logic circuit can be used for 
the processing selecting means 315for example. The secret memory measure 316 
is constituted by the memory device which had Tampa-proof nature like an IC 
cardfor example. The multi stage hash means 317 adds the arithmetic circuit etc. 
which search for the difference of the counter which counts the connection which 
feeds back an output to the arithmetic circuit which incorporated the algorithm of 
hash operation Hfor exampleand a number of stagesor a numerical valueand is 
constituted. Each above-mentioned means may be realized using the computer 
program on a microcomputer or a general purpose computer. Or it may record on 
a program recording medium in the form which can read the computer programand 
the composition combined with the program-recording-medium reader may realize. 
[0074]The authentication server means 32 is provided with the following. 
The 2nd transmission and reception means 321 that transmits and receives data, 
the attestation which clocks current time — a time check — the means 322. 
The authentication information storage means 323 which accumulates the user 
authentication information of a password etc. 

The random number generating means 324 which generates a random number for 
every user authentication processingand 2nd multi stage hash means 325 by which 
it is given and reliance also performs hash operation H of many number of 
stageses oneThe attestation collation means 326 which carries out comparative 
collation of the two multi stage hash valuesthe ticket identifier creating means 327 
which generates a unique ticket identifier for every authentication ticket issueand 
the attestation child addition means 328 which generates and adds the attestation 
child to an authentication ticket. 

[0075]According to the kind of communication networkthe 2nd transmission and 
reception means 321 For exampleLAN interface devicessuch as a LAN cardlt 
comprises infrared ray interface devicessuch as wireless interface devicessuch as 
telephone interfacing unitssuch as ISDN interface devicessuch as a terminal 
adopterand a modema portable data communication cardand a PIAFS cardand an 



IrDA moduleetc. attestation — a time check — as for the means 322a timer 
counter is usedfor example. If the authentication information storage means 323 is 
the memory device which comprised a mass memory device and had the Tampa- 
proof naturein additionit is good. The random number generating means 324 
comprises an arithmetic circuit which incorporated the random number generation 
algorithmfor exampleor an inverter which data-izes an electromagnetic noise. The 
2nd multi stage hash means 325 adds the counter etc. which count the connection 
which feeds back an output to the arithmetic circuit which incorporated the 
algorithm of hash operation Hfor exampleand a number of stagesand is constituted. 
The attestation collation means 326 comprises a comparison circuitfor example. 
The ticket identifier creating means 327 comprises a counter circuit which had 
sufficient bit lengthfor example. The attestation child addition means 328 
comprises the arithmetic circuit and memory circuit incorporating an attestation 
child generation algorithm. Each above-mentioned means may be realized using 
the computer program on a microcomputer or a general purpose computer. Or it 
may record on a program recording medium in the form which can read the 
computer programand the composition combined with the program-recording- 
medium reader may realize. 

[0076]The approval server means 33 is provided with the following. 
The 3rd transmission and reception means 331 that transmits and receives data, 
the approval which clocks current time — a time check — the means 332. 
The attestation child verifying means 333 which verifies the attestation child 
added to the authentication ticket. 

The ticket effective judging means 334 which performs the validity judging of an 
authentication ticketThe ticket use management tool 335 which remains with the 
ticket identifier of an authentication ticketand the number of times of effectiveand 
manages the number of times of availablethe 3rd multi stage hash means 336 that 
performs hash operation H of the given number of stagesand the approval collation 
means 337 which carries out comparative collation of the two multi stage hash 
values. 

[0077]According to the kind of communication networkthe 3rd transmission and 
reception means 331 For exampleLAN interface devicessuch as a LAN cardlt 
comprises infrared ray interface devicessuch as wireless interface devicessuch as 
telephone interfacing unitssuch as ISDN interface devicessuch as a terminal 
adopterand a modema portable data communication cardand a PIAFS cardand an 
IrDA moduleetc. approval — a time check — as for the means 332a timer counter 
is usedfor example. The attestation child verifying means 333 comprises the 
arithmetic circuit and memory circuit incorporating an attestation child verification 
algorithm. The ticket effective judging means 334 is constituted by the 
combination of a comparison circuitfor example. The ticket use management tool 
335 is constituted by the combination of the arithmetic circuit which calculates 
using frequencyand a mass memory device. For examplethe 3rd multi stage hash 
means 336 is a change thingand the preset value of a counter consists of the 



same arithmetic circuits as the 2nd multi stage hash means 325. The approval 
collation means 337 comprises a comparison circuitfor example. Each above- 
mentioned means may be realized using the computer program on a 
microcomputer or a general purpose computer. Or it may record on a program 
recording medium in the form which can read the computer programand the 
composition combined with the program-recording-medium reader may realize. 
[0078]It explains in the authentication method and authentication system which 
were constituted as mentioned abovereferring to drawing 6 f or the operation below. 
Herethe case where authentication demand Authenticate Request301 is 
accompanied by the number of times n of authentication ticket effective is 
explained. 

[0079]Firstin the client means 31 The user-identification child UID who shows the 
user itselfthe password PW for user authentication beforehand registered into the 
authentication server means 32the server identifier SID of the object which 
obtains use approvaland the number of times n of effective of an authentication 
ticket as the user input 300. It is inputted into the input means 312 
(ST3101ST3104). The input means 312 takes out the server identifier 31 01 and 
sends it to the ticket holding mechanism 314 while it holds the user input 300 
temporarily. The ticket holding mechanism 314 searches the authentication ticket 
data corresponding to the server identifier 3101 (ST3102)and sends the notice 
3102 of search results to the processing selecting means 315. When the notice 
3102 of search results shows non-**the processing selecting means 315The user 
authentication processing starting information 3103 is sent to said input means 
312 and the multi stage hash means 317and when owner ** is shown(ST31 03) use 
approval procedure starting information 3104 is sent to said ticket holding 
mechanism 314the secret memory measure 316and the multi stage hash means 
317. 

[0080]If the user authentication starting information 3103 is givensaid input means 
312The group 3105 of the user-identification child and server identifier which were 
taken out from the user input 300 held temporarilyand the number of times of 
effective is sent to the authentication server means 32 as authentication demand 
Authenticate Request301 via the 1 st transmission and reception means 311 
(ST3105)The number of times 3106 of effective is sent to the multi stage hash 
means 317and the password 3107 is sent to the hash means 313. 
[0081 ]In the authentication server means 32authentication demand Authenticate 
Request301 is received by the 2nd transmission and reception means 321 The 
taken-out user-identification child 3201 is seen off in the authentication 
information storage means 323the number of times 3202 of effective is sent to the 
2nd multi stage hash means 325 and attestation child addition means 328and the 
server identifier 3203 is sent to the attestation child addition means 328 (ST3201). 
The authentication information storage means 323 searches the password 
corresponding to the user-identification child 3201 (ST3202)In beingit sends 
(ST3203) and the password 3204 to the 2nd multi stage hash means 325and the 
notice 3205 of search results is sent to the random number generating means 324 



and the 2nd multi stage hash means 325. 

[0082]When the notice 3205 of search results shows owner **while the random 
number generating means 324 newly generates the challenge random number 3206 
for data disturbance at random and sends it to the 2nd multi stage hash means 
325It sends to the client means 31 as attestation challenge Challenge302 via the 
2nd transmission and reception means 321 (ST3204). When the notice 3205 of 
search results shows owner **the 2nd multi stage hash means 325To connection 
by the password 3204 and the challenge random numbers 3206from the number of 
times 3202 of effectivehash operation H of many number of stageses is performed 
oneand the multi stage hash value 3207 of a result is sent to the attestation 
collation means 326 (ST3205). 

[0083]On the other handin the client means 31 it is received by the 1st 
transmission and reception means 31 1the challenge random number 3108 is taken 
outand attestation challenge Challenge302 is sent to the hash means 313 
(ST3106). The hash means 313 performs hash operation H to connection by the 
password 3107 and the challenge random numbers 3108 (ST3107)and sends the 
hash value 3109 of a result to the secret memory measure 316 and the multi stage 
hash means 317. The secret memory measure 316 memorizes the hash value 3109 
in secrecyand permits only predetermined accessi.e.the renewal of an addition in a 
user authentication procedure and the reference in a use approval 
procedure(ST3108). When the user authentication procedure starting information 
3103 is given to the multi stage hash means 317Hash operation H of the number 
of stages equivalent to the number of times 3106 of effective is performed to the 
hash value 3109 (ST3109)and the multi stage hash value 3114 of a result is sent 
to the authentication server means 32 as attestation challenge answer 
Response303 via the 1 st transmission and reception means 311 (ST3110). 
[0084]On the other handin the authentication server means 32it is received by the 
2nd transmission and reception means 321the multi stage hash value 3208 is taken 
outand attestation challenge answer Response303 is sent to the attestation 
collation means 326 (ST3206). The attestation collation means 326 performs the 
coincidence decision of the multi stage hash value 3207 and the multi stage hash 
value 3208 (ST3207)While sending the collated result 3209 to the ticket identifier 
creating means 327it sends to the attestation child addition means 328 as it is by 
making the multi stage hash value 3208 into the multi stage hash value 3210. When 
the collated result 327 shows coincidencethe ticket identifier creating means 327 
generates the effective ticket identifier 3212and sends it to the attestation child 
addition means 328 (ST3208). 

[0085]attestation — a time check — the means 322 has clocked current time and 
supplies the time stamp 321 1 based on current time to the attestation child 
addition means 328. The attestation child addition means 328 connects the 
publisher identifier which shows ticket identifier 3212multi stage hash value 
3210number-of-times [ of effective ] 3202time stamp 3211 server identifier 
3203and authentication server 32 selfOn the other handan attestation child is 
generated and addedand it is considered as the authentication ticket data 3213 



(ST3209)and sends to the client means 31 as authentication ticket Ticket304 via 
the 2nd transmission and reception means 321 (ST3210). 
[0086]On the other handin the client means 31 it is received by the 1st 
transmission and reception means 31 1the authentication ticket data 3110 is taken 
outand authentication ticket Ticket304 is sent to said ticket holding mechanism 
314 (ST3111). Said ticket holding mechanism 314 matches the authentication 
ticket data 3110 with the server identifier 31 01 and holds it (ST31 1 2)passing the 
1st transmission and reception means 31 1 for the authentication ticket data 
31 11when the use approval procedure starting information 3104 is given — as 
authentication ticket Ticket305 — the approval demand Authorize Request — the 
approval server means 33 — sending (ST3113). The number of times 3112 of 
effective is taken out from authentication ticket dataand it sends to the multi 
stage hash means 317. 

[0087]On the other handin the approval server means 33it is received by the 3rd 
transmission and reception means 331 the authentication ticket data 3301 is taken 
outand the approval demand Authorize Request accompanied by authentication 
ticket Ticket305 is sent to the attestation child verifying means 333 (ST3301). 
While the attestation child verifying means 333 verifies compatibility with data 
divisions other than the attestation child of the authentication ticket data 3301 and 
an attestation child and sends the verification result 3304 to the ticket effective 
judging means 334 (ST3304)The time stamp 3302 and the server identifier 3303 
are taken out from a data divisionthe ticket identifier 3305the multi stage hash 
value 3306the number of times 3307 of effectiveand the publisher identifier 3308 
are taken out to the ticket effective judging means 334and it sends to the ticket 
use management tool 335respectively. 

[0088]approval — a time check — the means 332 has clocked current time and 
supplies the time stamp 3309 based on current time to the ticket effective judging 
means 334. When the verification result 3304 shows those without an errorthe 
ticket effective judging means 334 (ST3305)While performing the coincidence 
decision of the server identifier 3303 and the sel^server identifier held inside 
(ST3302ST3303)It confirms that the difference of the time stamp 3302 and the 
time stamp 3309 based on current time is within the limits of the predetermined 
term of validity (ST3306ST3307)and when all are truththe ticket effective notice 
3310 is sent to the ticket use management tool 335. If security will improve if this 
term of validity is set up shortbut user convenience falls and is set up for a long 
timeuser convenience will improvebut since security fallsit should take into 
consideration and define these balance. For examplewhat is necessary is just to 
carry out in 12 hours in 8 hours which can cover the office hours on the 1 stif it 
applies to the business-use system by which severe security is not demanded, 
however — the shortest — the hour corresponding between a client - a server 
and — each — a time check — it can be necessary to cover the time error 
between means 

[0089]When the ticket use management tool 335 has managed the ticket list at 
this time and the ticket effective notice 3310 is givenit is investigated whether the 



ticket identifier 3305 is usedunder a ticket list is searchedand it is already 
registered (ST3308). If there is no applicable thingthe group of the number of 
times 3307 of effective as a value which remains with the ticket identifier 3305 
and the number of times 3307 of effectiveand shows the number of times of 
available will be added to a ticket listand will be memorized (ST3309ST3310). At 
this timeit may memorize in accordance with the multi stage hash value 3306 and 
the publisher identifier 3308. When there is this added group or a thing applicable 
by searchit receives that this ** constructslt asks for the using frequency 331 1 
which the ticket use management tool 335 remainsreduces the number of times of 
available oneremains with the number of times of effectiveand a difference with 
the number of times of available shows (ST331 OWhile sending this to the client 
means 31 as approval challenge Challenge306 via the 3rd transmission and 
reception means 331 (ST3312)it sends also to the 3rd multi stage hash means 336. 
It sends to the approval collation means 337 as it is by making the multi stage 
hash value 3306 into the multi stage hash value 3312. 
[0090]On the other handin the client means 31 it is received by the 1st 
transmission and reception means 311the using frequency 3115 is taken outand 
approval challenge Challenge306 is sent to the multi stage hash means 317 
(ST31 14). When the use approval procedure starting information 3104 is giventhe 
multi stage hash means 317The hash value 3113 is obtained from said secret 
memory measure 316 (ST3115)Hash operation H of the number of stages 
equivalent to the difference of the number of times 3112 of effective and the using 
frequency 31 15 is performed to the hash value 31 13 (ST31 16)The multi stage hash 
value 31 16 of a result is sent to the approval server means 33 as approval 
challenge answer Response307 via the 1st transmission and reception means 311 
(ST3117). 

[0091]Since hash operation H cannot calculate this multi stage hash value 31 16 
for the sufficiently safe third party who does not know the password PW and the 
random number R0 as long as iton the other handhas tropismthe length of a 
resultand random naturelt is shown that it is a valid user which gets to know the 
password PW by this multi stage hash value 31 16. Since many number of stageses 
of hash operation H in a multi stage hash value are performed so that it went back 
in the past and the following multi stage hash value is also incalculable from this 
multi stage hash value 31 16there is also no necessity for encryption. Generally it 
is supposed 100 or more times [ operation / code ] that it is hash operation a high 
speedand if it is a suitable number of stagesit can process at high speed than the 
case where a code is used. 

[0092]On the other handin the approval server means 33it is received by the 3rd 
reception means 331 the multi stage hash value 3313 is taken outand approval 
challenge answer Response307 is sent to the 3rd multi stage hash means 336 
(ST3313). The 3rd multi stage hash means 336 performs hash operation H of the 
number of stages equivalent to the using frequency 331 1 to the multi stage hash 
value 3313and sends the secondary multi stage hash value 3314 of a result to the 
approval collation means 337 (ST3314). The approval collation means 337 



performs the coincidence decision of the multi stage hash value 3312 and the 
secondary multi stage hash value 3314 (ST3315ST3316)If it is truththe notice 
3315 of approval will be sent to the client means 31 as notice Resultof 
approval308 via the 3rd transmission and reception means 331 (ST3317)and it is 
received in the client means 31 (ST3118). By this methodthe client means 31 can 
obtain use approval to n times using the authentication ticket 305without revealing 
the password PW to a third party including the approval server means 33. 
[0093]Although it had composition which calculates a multi stage hash value in the 
client means 31 at every use approval procedure in the above explanationit is good 
also as composition which carries out precomputation of the multi stage hash 
value of all the number of stageses at the time of acquisition of an authentication 
ticketand is memorized to the secret memory measure 316. In that caseprocessing 
time for every use approval procedure of what needs to use the more nearly mass 
Tampa-proof nature memory device as the secret memory measure 316 can be 
shortened more. 

[0094]Nextin the authentication system of a 4th embodiment shown in drawing 
5the detailed example of composition and operation of the attestation child 
addition means 328 at the time of using a message authorization code as an 
attestation child and the attestation child verifying means 333 are explained with 
reference to drawing 7 and drawing 8 . 

[0095]The attestation child addition means 328 is provided with the following. 

The self-identifier storage means 328A the identifier which shows the 

authentication server itself was remembered to be as shown in d rawing 7. 

Data connecting mechanism 328B which connects data. 

A connection data hash means 328C to perform hash operation h. 

The server common key memory measure 328D which memorizes the server 

common key with common authentication server means 31 and approval server 

means 32 which it has as secretthe common key system cryptographer stage 

328E which performs cipher processing of a common key systemand attestation 

child connecting mechanism 328F which connects an attestation child with data. 

[0096]This self-identifier storage means 328A comprises a memoryfor example. 
The data connecting mechanism 328B can consist of logic circuitsfor example. 
The connection data hash means 328C comprises an arithmetic circuit which 
incorporated the algorithm of hash operation hfor example. Hash operation h may 
be the same as hash operation Hor may differ here. If the server common key 
memory measure 328D is the memory device which comprised a memoryfor 
example and had the Tampa-proof naturein additionit is good. The common key 
system cryptographer stage 328E comprises the arithmetic circuit or cipher- 
processing exclusive processor which incorporated the cryptographic algorithmfor 
example. As a cryptographic algorithmDESTriple DESetc. can be used herefor 
example. The attestation child connecting mechanism 328F comprises a logic 
circuitfor example. 

[0097]The attestation child separating mechanism 333A into which the attestation 



child verifying means 333 separates an attestation child from data as shown in 
drawing 8 The 2nd connection data hash means 333B that performs hash operation 
hThe 2nd server common key memory measure 333C that memorizes the server 
common key with common authentication server means 31 and approval server 
means 32 which it has as secretlt provides with the 2nd common key system 
cryptographer stage 333D that performs cipher processing of a common key 
systemthe data separation means 333E which carries out division separation of 
the data divisionthe publisher identifier collation means 333F which compares a 
publisher identifierand the comparison means 333G which carries out comparison 
verification of the message authorization code. 

[0098]This attestation child separating mechanism 333A comprises a logic 
circuitfor example. The 2nd connection data hash means 333Bthe 2nd server 
common key memory measure 333Cand the 2nd common key system 
cryptographer stage 333D are constituted like 328C328Dand 328E in drawing 
7respectively. The data separation means 333E comprises a logic circuitfor 
example. The publisher identifier collation means 333F comprises a memory circuit 
and a comparison circuitfor example. The comparison means 333G is constituted 
by the combination of a comparison circuitfor example. Each above-mentioned 
means may be realized using the computer program on a microcomputer or a 
general purpose computer. Or it may record on a program recording medium in the 
form which can read the computer programand the composition combined with the 
program-recording-medium reader may realize. 

[0099]Operation of the attestation child addition means 328 constituted as 
mentioned above and the attestation child verifying means 333 is explained. In the 
attestation child addition means 328the identifier which shows the authentication 
server itself to the data connecting mechanism 328B from the self-identifier 
storage means 328A is first supplied as the publisher identifier 328a. The number 
of times 3202 of effective and the server identifier 3203 which acquired the data 
connecting mechanism 328B from the 2nd transmission and reception means 
321 the multi stage hash value 3210 obtained from the attestation collation means 
326and attestation — a time check — with the time stamp 321 1 obtained from 
the means 322. It arranges and connects in an order that the ticket identifier 3212 
obtained from the ticket identifier creating means 327 and the publisher identifier 
328a obtained from the self-identifier storage means 328A were able to be 
defmedand sends to the connection data hash means 328C and the attestation 
child connecting mechanism 328F as the data division 328b. 
[0100]The connection data hash means 328C performs hash operation h to the 
data division 328band sends the hash value 328c of a result to the common key 
system cryptographer stage 328E. The common key system cryptographer stage 
328E obtains the server common key 328d from the server common key memory 
measure 328Duses this for an encryption keyenciphers the hash value 328cand 
sends it to the attestation child connecting mechanism 328F as the message 
authorization code 328e. The attestation child connecting mechanism 328F 
connects the message authorization code 328e with the data division 328band 



outputs the authentication ticket data 3213. 

[0101]In the attestation child verifying means 333the authentication ticket data 
3301 is first inputted into the attestation child separating mechanism 333AIt 
separates into the message authorization code 333a and the data division 333band 
the message authorization code 333a is sent to the comparison means 333Gand 
the data division 333b is sent to the 2nd connection data hash means 333B and 
data separation means 333Erespectively. The 2nd connection data hash means 
333B performs hash operation h to the data division 333band sends the hash value 
333c of a result to the 2nd common key system cryptographer stage 333D. The 
2nd common key system cryptographer stage 333D obtains the server common 
key 333d from the 2nd server common key memory measure 333Cuses this for an 
encryption keyenciphers the hash value 333cand sends it to the comparison 
means 333G as the message authorization code 333e for comparison. While it 
separates into the time stamp 3302the server identifier 3303the ticket identifier 
3305the multi stage hash value 3306the number of times 3307 of effectiveand the 
publisher identifier 3308 and the data separation means 333E outputs the data 
division 333bAbout the publisher identifier 3308it sends also to the publisher 
identifier collation means 333F. The publisher identifier collation means 333F 
compares whether the publisher identifier 3308 is an identifier of the 
authentication server 32and sends 333 f of collated results to the comparison 
means 333G. The comparison means 333G outputs the verification result 3304 
based on whether 333 f of collated results show coincidenceor the message 
authorization code 333a and the message authorization code 333e for comparison 
are in agreement. Each that the verification result 3304 shows those without an 
error is the case of being in agreement. 

[0102]Nextin the authentication system of a 4th embodiment of drawing 5t he 
composition and operation of the attestation child addition means 328 at the time 
of using a digital signature as an attestation child and the attestation child 
verifying means 333 are explained with reference to drawing 9 and drawing 10 . 
Differing from drawing 7 in drawing 9 instead of the server common key memory 
measure 328D and the common key system cryptographer stage 328EIt is in the 
point of having formed the public key system cryptographer stage 328H which 
performs cipher processing of the self-secret key memory measure 328G which 
memorizes the public key system code secret key of authentication server 32 
selfand a public key system. If it is the memory device which could use the 
memoryfor example and had the Tampa-proof nature as the self-secret key 
memory measure 328Gin additionit is good. As the public key system 
cryptographer stage 328Hthe arithmetic circuit or cipher-processing exclusive 
processor which incorporated the cryptographic algorithmfor example can be used. 
As a cryptographic algorithmRSAan elliptic curve cryptosystemetc. can be used 
herefor example. 

[0103]Differingfrom drawing 8 in drawing 10 The 2nd server common key memory 
measure 333CInstead of the 2nd common key system cryptographer stage 333D 
and the publisher identifier collation means 333FThe public key system decoding 



means 333J which performs decoding processing of the server public key 
accumulation means 333H which matches the public key of the authentication 
server means 31 with a server identifierand accumulates it one or moreand a 
public key system code is establishedand it is in the point of having changed 
connection between these. The server public key accumulation means 333H is 
good also as what accumulates not only the authentication server means 32 but 
the public key of the approval server means 33. As the server public key 
accumulation means 333Ha memory circuit can be usedfor exampleand if it is a 
mass memory devicein additionit is good. As the public key system decoding 
means 333Jthe arithmetic circuit or cipher-processing exclusive processor which 
incorporated the decoding algorithmfor example can be used. It cannot be 
overemphasized that the decoding algorithm corresponding to the cryptographic 
algorithm in the public key system cryptographer stage 328H is used as a decoding 
algorithm here. Each above-mentioned means may be realized using the computer 
program on a microcomputer or a general purpose computer. Or it may record on 
a program recording medium in the form which can read the computer programand 
the composition combined with the program-recording-medium reader may realize. 
[0104]Operation of the attestation child addition means 328 constituted as 
mentioned above and the attestation child verifying means 333 is explained. In the 
attestation child addition means 328the self-identifier storage means 328Athe 
data connecting mechanism 328BOperation of the connection data hash means 
328C is the same as that of the case of drawing 7 the data division 328b is 
supplied to the attestation child connecting mechanism 328Fand the hash value 
328c is supplied to the public key system cryptographer stage 328Hrespectively. 
The public key system cryptographer stage 328H obtains the self-secret key 328f 
from the self-secret key memory measure 328Guses this for an encryption 
keyenciphers the hash value 328cand sends it to the attestation child connecting 
mechanism 328F as 328g of digital signatures. The attestation child connecting 
mechanism 328F connects 328 g of digital signatures with the data division 
328band outputs the authentication ticket data 3213. 

[0105]In the attestation child verifying means 333the authentication ticket data 
3301 is first inputted into the attestation child separating mechanism 333AIt 
separates into 333 g of digital signaturesand the data division 333band 333 g of 
digital signatures are sent to the public key system decoding means 333Jand the 
data division 333b is sent to the 2nd connection data hash means 333B and data 
separation means 333Erespectively. The 2nd connection data hash means 333B 
performs hash operation h to the data division 333band sends the hash value of 
333 h of a result to the comparison means 333G. While it separates into the time 
stamp 3302the server identifier 3303the ticket identifier 3305the multi stage hash 
value 3306the number of times 3307 of effectiveand the publisher identifier 3308 
and the data separation means 333E outputs the data division 333bAbout the 
publisher identifier 3308it sends also to the server public key accumulation means 
333H. While the publisher identifier 3308 carries out search collation of whether it 
is an identifier of the known authentication server 31 (or approval server 32) and 



sends the collated result 333i to the comparison means 333Gthe server public key 
accumulation means 333HThe server public key 333j corresponding to the 
publisher identifier 3308 is sent to the public key system decoding means 333J. 
[0106]The public key system decoding means 333J uses the server public key 
333j for a decode keydecrypts 333 g of digital signaturesand sends them to the 
comparison means 333G as the hash value 333k for comparison. The comparison 
means 333G outputs the verification result 3304 based on whether the collated 
result 333i shows coincidence or the hash value of 333 h and the hash value 333k 
for comparison are in agreement. Each that the verification result 3304 shows 
those without an error is the case of being in agreement. 
[0107]Thuswhen an authentication system takes the composition of this 
embodimenteven if a client side is a device with low computation capabilityit 
becomes possible to perform use approval processing by practical processing time. 
[0108](A 5th embodiment) A 5th embodiment explains the block configuration of 
each means to perform the concrete communication procedure and it in the 
authentication system of a 3rd embodiment. 

r0109] Drawing 1 1 is a protocol sequence diagram showing the protocol of the 
authentication system in a 5th embodiment. It is to differ from drawing 4 in 
drawing 1 1 with the client means 41 with a user interfaceand an authentication 
server means 42 to perform user authenticationand the approval server means 33 
does not have a change. .Attestation challenge answer Response401 via a user 
interface. The point accompanied by the exclusive OR result (the sign "@" shows 
EXCLUSIVE OR operation) of the result of having given 1 step of hash operation H 
to connection by the password PW and the random number R0 which were 
inputtedand the random number SO for attestation which the client means 41 
generated in secrecyAuthentication ticket Ticket402the point that the hash 
operation result by which 403 is accompanied is a hash operation result of n stage 
to the random number SO for attestationlt differs in that the hash operation result 
by which approval challenge answer Response404 is accompanied is the hash 
operation of the n-k stage to the random number SO for attestation. 
[01 10]By the above protocol sequencesthe client means 41 without revealing the 
password PW to a third party including the approval server means 33Use approval 
can be obtained to n times using the authentication ticket 402and it does not 
become even a target of attack for stealing the password PW by an inaccurate 
third partysince the authentication tickets 402 are contents unrelated to the 
password PWbut safety is higher. 

[01 1 1]It explains referring to the functional block diagram of drawing 12 f or the 
composition with such a protocol sequence of an authentication system. 
[01 12]Also in drawing 12 an authentication server means 42 to perform the client 
means 41 and user authentication with a user interface differs from drawing S and 
the approval server means 33 does not have a change. Differing from the client 
means 31 of drawing 5 in the client means 41 establishes the random number 
generating means 41 1 for attestation which generates a random number for every 
user authentication processingand the 1st exclusive OR means 412 that performs 



EXCLUSIVE OR operation for every bitand it is at the point of having changed a 
part of connection. Differing from the authentication server means 32 of drawing 5 
in the authentication server means 42Instead of the 2nd multi stage hash means 
325 and the attestation collation means 326The 2nd exclusive OR means 422 that 
performs EXCLUSIVE OR operation for every 2nd 421 bit hash means that 
performs hash operation Hand the 2nd multi stage hash means 423 that performs 
hash operation H of the given number of stages are formedand it is in the point of 
having changed a part of connection. As the random number generating means 41 1 
for attestationthe arithmetic circuit which incorporated the random number 
generation algorithmfor exampleor the inverter which data-izes an electromagnetic 
noise can be used. As the 1st and 2nd exclusive OR means 412 and 422a logic 
circuit can be usedfor example. As the 2nd hash means 421the arithmetic circuit 
which incorporated the algorithm of hash operation Hfor example can be used. The 
counter etc. which count the connection which feeds back an outputfor example 
to the same arithmetic circuit as 421 and a number of stages as the 2nd multi 
stage hash means 423 can be added and constituted. Each above-mentioned 
means may be realized using the computer program on a microcomputer or a 
general purpose computer. Or it may record on a program recording medium in the 
form which can read the computer programand the composition combined with the 
program-recording-medium reader may realize. 

[0113]It explains referring to drawing 13 f or operation of the authentication system 
constituted as mentioned above. Herethe case where authentication demand 
Authenticate Request301 is accompanied by the number of times n of 
authentication ticket effective is explained. 

[01 14]Firstin the client means 41 and the authentication server means 
42operation of the 1st and 2nd transmission and reception means 311 and 321the 
input means 312the ticket holding mechanism 314the processing selecting means 
315the authentication information storage means 323and the random number 
generating means 324 is the same as that of the case of drawing 5 and drawing 6 It 
is exchanged in authentication demand Authenticate Request301 and attestation 
challenge Challenge302In the client means 41the number of times 4201 of 
effectivethe server identifier 3203the password 3204the notice 4202 of search 
resultsand the challenge random number 3206 are obtained for the user 
authentication processing starting information 4101 or the use approval procedure 
starting information 3104 in the authentication server means 42. Howeverthe point 
that the user authentication processing starting information 4101 is sent to said 
input means 312the random number generating means 411 for attestationand the 
1st exclusive OR means 412The point that the number of times 4201 of effective 
is sent to the 2nd multi stage hash means 423 and attestation child addition 
means 328The point that the notice 4202 of search results is sent to the 2nd hash 
means 421 random number generating means 324and ticket identifier creating 
means 327While the challenge random number 3206 is sent to the 2nd hash means 
421 it differs in that it is sent to the client means 41 via the 2nd transmission and 
reception means 321. 



[0115]Nextin the client means 41 the random number generating means 411 for 
attestation If the user authentication processing starting information 4101 is 
giventhe random number 4102 for attestation used for an attested proof will newly 
be generated at random and in secrecyand will be sent to the 1st exclusive OR 
means 412 and secret memory measure 316 (ST4101). The secret memory 
measure 316 memorizes the random number 4102 for attestation in secrecyand 
permits only predetermined accessi.e.the renewal of an addition in a user 
authentication procedure and the reference in a use approval procedure(ST4102). 
If the user authentication processing starting information 4101 is giventhe 1st 
exclusive OR means 412EXCLUSIVE OR operation for every bit is performed 
between the hash value 4103 and the random number 4102 for attestation which 
were obtained from the hash means 313The disturbance hash value 4104 obtained 
as a result is sent to the authentication server means 42 as attestation challenge 
answer Response401 via the 1 st transmission and reception means 311 
(ST4103ST4104). 

[01 16]On the other handin the authentication server means 42it is received by the 
2nd transmission and reception means 321 the disturbance hash value 4204 is 
taken outand attestation challenge answer Response401 is sent to the 2nd 
exclusive OR means 422 (ST4202). On the other handwhen the notice 4202 of 
search results shows owner **the 2nd hash means 421 performs hash operation H 
to connection by the password 3204 and the challenge random numbers 3206and 
supplies the hash value 4203 of a result to the 2nd exclusive OR means 422 
(ST4201). The 2nd exclusive OR means 422 performs EXCLUSIVE OR operation 
for every bit between the hash value 4203 obtained from the 2nd hash means 
421 and the disturbance hash value 4204and sends the random number 4205 for 
attestation obtained as a result to the 2nd multi stage hash means 423 (ST4203). 
The 2nd multi stage hash means 423 performs hash operation H of a number of 
stages equivalent to the number of times 4201 of effective to the random number 
4205 for attestationand sends the multi stage hash value 4206 of a result to the 
attestation child addition means 328 (ST4204). 

[0117]the following and ticket identifier creating means 327 and attestation — a 
time check — operation of the means 322 and the attestation child addition 
means 328although it is the same as that of the case of drawing 4 and drawing 
5The point of using the notice 4202 of search results instead of the ticket 
identifier creating means 327 being the collated result 3209It differs in that the 
number of times 4201 of effective and the multi stage hash value 4206 are used 
instead of the attestation child addition means 328 being the number of times 
3202 of effectiveand the multi stage hash value 3210The authentication ticket 
data 4207 of contents which are different in the authentication ticket data 3213 is 
obtained (ST4205)and it is sent to the client means 41 as authentication ticket 
Ticket402 via the 2nd transmission and reception means 321. 

[01 18]On the other handin the client means 41 It operates like the case where said 
1st transmission and reception means 31 1 and said ticket holding mechanism 314 
are drawing 5 and drawing 6 When the use approval procedure starting information 



3104 is givenauthentication ticket Ticket403 is sent to the approval server means 
33 with the approval demand Authorize Requestand the number of times 31 12 of 
effective is supplied to the multi stage hash means 317. 

[01 19]Operation of the approval server means 33 for this is the same as that of 
the case of drawing 5 and drawing 6 and approval challenge Challenge306 is 
returned. 

[0120]On the other handin the client means 41 it operates like the case where said 
1st transmission and reception means 311 and the multi stage hash means 317 are 
drawing 5 and drawing 6 . Howeverit is the random number 4105 for attestation 
which is obtained from said secret memory measure 316 (ST4105)and processing 
is performed to this. Namelythe multi stage hash means 317 performs hash 
operation H of the number of stages equivalent to the difference of the number of 
times 31 12 of effectiveand the using frequency 31 15 (ST4106)The multi stage 
hash value 4106 of a result is sent to the approval server means 33 as approval 
challenge answer Response404 via the 1st transmission and reception means 31 1 
(ST4107). 

[01 21]It is only that the candidate for hash differs between the multi stage hash 
value by which approval challenge answer Response404 which the approval server 
means 33 obtains by this is accompaniedand the multi stage hash value by which 
authentication ticket Ticket403 is accompanied in the case of drawing 5 and 
drawing 6 and the operation relation between the former and the latter is 
maintained. Thereforeif operation of the approval server means 33 for this may be 
the same as that of the case of drawing 5 and drawing 6 checks the relation of two 
multi stage hash values and accepts that it is justnotice Resultof approval308 will 
be returnedand it is received in the client means 41. By this methodwithout 
revealing the password PW to a third party including the approval server means 
33the password PW of the client means 41 is unrelatedand it can obtain use 
approval to n times using the higher authentication ticket 402 of safety. 
[01 22] Although it had composition which calculates a multi stage hash value in the 
client means 41 at every use approval procedure in the above explanationit is good 
also as composition which carries out precomputation of the multi stage hash 
value of all the number of stageses at the time of acquisition of an authentication 
ticketand is memorized to the secret memory measure 316. In that caseprocessing 
time for every use approval procedure of what needs to use the more nearly mass 
Tampa-proof nature memory device as the secret memory measure 316 can be 
shortened more. 

[0123]Thuswhen an authentication system takes the composition of this 
embodimenteven if a client side is a device with low computation capabilityit 
becomes possible to perform use approval processing by practical processing time. 
Since the collation information included in an authentication ticket becomes 
unrelated to user authentication informationa possibility that user authentication 
information will be guessed disappears from an authentication ticketand single 
sign-on type an authentication method and an authentication system with higher 
safety are obtained. 



[0124](A 6th embodiment) In the authentication system of a 6th embodimentthe 
authentication ticket in which using frequency was updated is sent to a client 
means with the notice of approval from an approval server. 
[0125] Drawing 14 is a protocol sequence diagram showing the protocol of this 
authentication system. In drawing 14t he client means 51 and the approval server 
means 53 differ from drawing 4 and the authentication server means 32 does not 
have a change. It differs in that authentication ticket Ticket501 updated by the 
client means 51 with notice Resultof approval308 from the approval server 53 is 
sent. 

[0126]This authentication ticket Ticket501 compared with the authentication 
ticket 305the following point is different. 

[0127]That isthe n+1-step hash operation result in the authentication ticket 305 is 
transposed to the +1 step of n-k hash operation result (k is using frequency). The 
number of times n of effective in the authentication ticket 305 remainsand it is 
transposed to number-of-times n-k of available. Time stamp TSO is transposed to 
the new time stamp TSk. The publisher identifier IID is transposed to the server 
identifier which shows approval server 53 self. A new attestation child is added. 
[0128]By this methodthe client means 51 can obtain use approval to n times using 
the authentication ticket 304 or the updated authentication ticket 501 without 
revealing the password PW to a third party including the approval server means 53. 
Since the time stamp of an authentication ticket is updated each timethe term of 
validity can be set up shorter. Thereforethe period which can become a target of 
attack by an inaccurate third party becomes shortand safety is higher. Since the 
number of the hash operations in the approval server means 53 may be onethe 
response time in a use approval procedure can be shortened. 
[01 29]It explains referring to drawing 15 f or the composition with such a protocol 
sequence of an authentication system. 

[0130]In drawing 15t he client means 51 and the approval server means 53 differ 
from drawing S and the authentication server means 32 does not have a change. 
Differing from the client means 31 of drawing 5 in the client means 51 has the 
ticket holding mechanism 51 1 in the point of having enabled it to also hold the 
authentication ticket data 5101 of authentication ticket Ticket501 from the 
approval server means 53. Differing from the approval server means 33 of drawing 
5_in the approval server means 53The ticket use management tool 531 shall 
remain and the number of times of available shall also be outputted. The 3rd hash 
means 532 that performs 1 step of hash operation H instead of the 3rd multi stage 
hash means 336 is formedthe 2nd attestation child addition means 533 that 
generates and adds the attestation child to an authentication ticket is newly 
establishedand it is in the point of having changed a part of connection. 
[0131]As this ticket holding mechanism 51 1the same composition as the ticket 
holding mechanism 314 can add and use connection. As the ticket use 
management tool 531the same composition as the ticket use management tool 
335 can add and use connection. As the 3rd hash means 532the arithmetic circuit 
which incorporated the algorithm of hash operation Hfor example can be used. As 



the 2nd attestation child addition means 533the same composition as the 
attestation child addition means 328 can be used. Each above-mentioned means 
may be realized using the computer program on a microcomputer or a general 
purpose computer. Or it may record on a program recording medium in the form 
which can read the computer programand the composition combined with the 
program-recording-medium reader may realize. 

[0132]It explains referring to drawing 16 f or operation of the authentication system 
constituted as mentioned above. Herethe case where authentication demand 
Authenticate Request301 is accompanied by the number of times n of 
authentication ticket effective is explained. 

[0133]Firstthe operation in the client means 51 and the authentication server 
means 32 is the same as that of the case of drawing 5 and drawing 6 a user 
authentication procedure is performed andeventuallyauthentication ticket 
Ticket304 is sent to the client means 51 from the authentication server means 32. 
[0134]On the other handin the client means 51 The 1st transmission and reception 
means 31 1 operates like the case of drawing 5 and drawing 6 and the ticket holding 
mechanism 51 1 operates like drawing 5 and the ticket holding mechanism 314 in 
the case of drawing 6 While authentication ticket Ticket305 is sent to the approval 
server means 53 with the approval demand Authorize Requestthe number of times 
31 12 of effective is taken out from authentication ticket dataand it is sent to the 
multi stage hash means 317. 

[0135]On the other handin the approval server means 53the 3rd transmission and 
reception means 331 and approval — a time check — the means 332the 
attestation child verifying means 333and the ticket effective judging means 334 
operating like the case of drawing 5 and drawing 6 andThe ticket identifier 3305the 
multi stage hash value 3306the number of times 3307 of effectivethe publisher 
identifier 3308and the ticket effective notice 3310 are supplied to the ticket use 
management tool 531. The ticket use management tool 531 operates almost like 
drawing 5 and the ticket use management tool 335 in the case of drawing 
6Although the using frequency 5301 is sent to the client means 51 as approval 
challenge Challenge306 via the 3rd transmission and reception means 331 and 
being sent to the approval collation means 337 as it is by making the multi stage 
hash value 3306 into the multi stage hash value 5302Furthermoreit remains with a 
ticket identifierthe group 5303 of the number of times of available and a server 
identifier is outputtedand it sends to the 2nd attestation child addition means 533. 
[0136]Operation of the client means 51 for this is the same as that of the case of 
drawing 5 and drawing 6 and approval challenge answer Response307 is returned to 
approval challenge Challenge306. 

[0137]On the other handin the approval server means 53it is received by the 3rd 
transmission and reception means 331 the multi stage hash value 5304 is taken 
outand approval challenge answer Response307 is sent to the 3rd hash means 532 
and the 2nd attestation child addition means 533. The 3rd hash means 532 
performs hash operation H to the multi stage hash value 5304and sends the 
secondary multi stage hash value 5305 whose number of stages of hash increased 



by one to the approval collation means 337 (ST5301). The approval collation 
means 337 performs the coincidence decision of the multi stage hash value 5302 
and the secondary multi stage hash value 5305 (ST5302ST331 6)and sends the 
collated result 5307 to the 2nd attestation child addition means 533. 
[01 38]approval — a time check — the means 322 has clocked current time and 
supplies the time stamp 5306 based on current time to the 2nd attestation child 
addition means 533. The 2nd attestation child addition means 533 connects the 
publisher identifier which remains with a ticket identifier and shows number-of- 
times [ of available ]group [ of a server identifier ] 5303multi stage hash value 
5304time stamp 5306and approval server 53 selfOn the other handan attestation 
child is generated and addedand it is considered as the authentication ticket data 
5308 (ST5303)and sends to the client means 51 with notice Resultof approval308 
as authentication ticket Ticket501 via the 3rd transmission and reception means 
331 (ST5304). 

[0139]On the other handin the client means 51 It is received by the 1st 
transmission and reception means 31 land authentication ticket Ticket501 is sent 
to said ticket holding mechanism 511 as the authentication ticket data 51 01 is held 
(ST5101ST5102)and is used in a next use approval procedure. 
[0140]Since the number of stages of the multi stage hash value by which the 
authentication ticket 305 sent to the approval server means 53 is accompanied 
decreases every [ 1 ] for every use approval and it goes from the client means 51 
by thisin the approval server means 53what is necessary is just to perform one 
step of hash operationand it can shorten response time. Since a time stamp is 
updatedit can set to the shortness of the grade which can cover the interval of 
access to the term of validityfor examplel hourand the user convenience can 
improve safetywithout making it fall. By this methodthe client means 31 can obtain 
use approval in the shorter response time to n times using the higher 
authentication ticket 305 of safetywithout revealing the password PW to a third 
party including the approval server means 53. 

[0141]Although it had composition which calculates a multi stage hash value in the 
client means 51 at every use approval procedure in the above explanationit is good 
also as composition which carries out precomputation of the multi stage hash 
value of all the number of stageses at the time of acquisition of an authentication 
ticketand is memorized to the secret memory measure 316. In that caseprocessing 
time for every use approval procedure of what needs to use the more nearly mass 
Tampa-proof nature memory device as the secret memory measure 316 can be 
shortened more. 

[0142]Thusin the authentication system of this embodimentpossibility of the 
unauthorized use by a third party can be made smallerand the response time of 
use approval can be shortened. 

[0143](A 7th embodiment) An authentication ticket can be used for the 
authentication system of a 7th embodiment in common to two or more approval 
servers. 

ro 1441 Drawing 17 is a protocol sequence diagram showing the protocol of this 



authentication system. In drawing 1 7 the client means 61 the authentication server 
means 62and the approval server means 63 differ from drawing 4 and it has added 
the authentication ticket management tool 64 further. .Attestation challenge 
answer Response303. Authentication ticket shelf registration directions 
Registration601 accompanied by the ticket identifier TID and the server identifier 
SID which the received authentication server means 62 took out from 
authentication demand Authenticate Request301and the number of times n of 
effective. The point sent to the authentication ticket management tool 64the point 
accompanied by the using frequency k in approval demand Authorize 
Request602Approval demand Authorize Request602. Authentication ticket 
Ticket305 [ and ]. Authentication ticket history update indication Update603 
accompanied by the ticket identifier TID and the server identifier SID which the 
received approval server means 63 took out from approval demand Authorize 
Request602 and the authentication ticket 305and the using frequency k. The point 
accompanied by the random number Rk generated so that it might differ each time 
instead of the point sent to the authentication ticket management tool 64the point 
that authentication ticket rejected note Reject606 is returned if needed to thisand 
approval challenge Challenge604 being the using frequency kThe points 
accompanied by the result of having carried out EXCLUSIVE OR operation with Rk 
to the result which approval challenge answer Response605 gave hash operation 
[ of +one step of n-k ] H to connection by the password PW and the random 
numbers RO further differ. 

[0145]By this methodthe client means 61 without revealing the password PW to a 
third party including the approval server means 63In order to check by the 
authentication ticket management tool 64 which could obtain use approval to n 
times using the authentication ticket 304sent the using frequency k from the 
client means 61 and became independent in the approval server means 63The 
authentication ticket 304 can be made available in common by two or more 
approval server means 63. 

[01 46]It explains referring to drawing 18 for the composition with this protocol 
sequence of an authentication system. Also in drawing 18 the client means 61the 
authentication server means 62and the approval server means 63 differ from 
drawing S and it has added the authentication ticket management tool 64 further. 
Differing from the client means 31 of drawing 5 in the client means 61 While holding 
an authentication ticketthe ticket maintenance management tool 61 1 which 
manages the using frequency k is established instead of the ticket holding 
mechanism 314the 1st exclusive OR means 612 that performs EXCLUSIVE OR 
operation for every bit is establishedand it is in the point of having changed a part 
of connection. Differing from the authentication server means 32 of drawing 5 in 
the authentication server means 62 forms a ticket registration instruction means 
621 to generate authentication ticket shelf registration indicative dataand it is at 
the point of having changed a part of connection. 

[0147]Differing from the approval server means 33 of drawing 5 in the approval 
server means 63The ticket update indication means 631 which generates 



authentication ticket history update indication data while remaining with the ticket 
identifier of an authentication ticket and the number of times of effectivereceiving 
the number of times of available and supplying each part is established instead of 
the ticket use management tool 335The 2nd exclusive OR means 633 that 
performs EXCLUSIVE OR operation for every 2nd 632 bit random number 
generating means that generates a random number for every use approval 
processing is establishedand it is in the point of having changed a part of 
connection. 

[0148]As this ticket maintenance management tool 61 1the adder circuit which 
calculates using frequency is added to the same composition as the ticket holding 
mechanism 335and it is constituted. As the 1st and 2nd exclusive OR means 612 
and 633a logic circuit can be usedfor example. As the ticket registration 
instruction means 621a logic circuit can be usedfor example. As the ticket update 
indication means 631a logic circuit can be usedfor example. As the 2nd random 
number generating means 632the same composition as the random number 
generating means 324 can be used. The combination of the arithmetic circuit and 
comparison circuit which compare various communication-interface devicesthe 
logic circuit which performs division combination of dataand using frequency as 
the authentication ticket management tool 64and a mass memory device can 
constitute. Each above-mentioned means may be realized using the computer 
program on a microcomputer or a general purpose computer. Or it may record on 
a program recording medium in the form which can read the computer programand 
the composition combined with the program-recording-medium reader may realize. 
[01 49]It explains referring to drawing 19 f or operation of the authentication system 
constituted as mentioned above. Herethe case where authentication demand 
Authenticate Request301 is accompanied by the number of times n of 
authentication ticket effective is explained. 

[0150]Firstthe operation in the client means 61 in a user authentication procedure 
and the authentication server means 62 is the same as that of the case of drawing 
5_and drawing 6 almostand authentication ticket Ticket304 is eventually sent to 
the client means 61 from the authentication server means 62. Howeverin the client 
means 61 the ticket maintenance management tool 61 1 operates the ticket holding 
mechanism 314 at this time. In the authentication server means 62the number of 
times 6201 of effective taken out from authentication demand Authenticate 
Request301 is sent also to the multi stage hash means 325and the ticket 
registration instruction means 621 besides the attestation child addition means 
328The server identifier 6202 is sent to the ticket registration instruction means 
621 besides the attestation child addition means 328and the ticket identifier 6203 
generated by the ticket identifier creating means 327 is sent to the ticket 
registration instruction means 621 besides the attestation child addition means 
328. 

[0151]The ticket registration instruction means 621 connects the ticket identifier 
6203the server identifier 6202and the number of times 6201 of effectiveand 
generates the authentication ticket shelf registration indicative data 6204It sends 



to the authentication ticket management tool 64 as authentication ticket shelf 
registration directions Registration601 via the 2nd transmission and reception 
means 321 (ST6201). It is investigated whether when the ticket list is managed 
and authentication ticket shelf registration directions Registration601 is giventhe 
authentication ticket management tool 64 which received this uses a ticket 
identifiersearches under a ticket listand is already registered. If there is no 
applicable thingthe group of the number of times of effective as a value which 
remains with a ticket identifier and the number of times of effectiveand shows the 
number of times of available will be added to a ticket listand will be memorized. 
[0152]On the other handin the client means 61 it is received by the 1st 
transmission and reception means 31 1the authentication ticket data 31 10 is taken 
outand authentication ticket Ticket304 is sent to the ticket maintenance 
management tool 61 1 . The ticket maintenance management tool 61 1 matches the 
authentication ticket data 31 10 with the server identifier 31 01 and holds itRemain 
and the number of times of effective taken out from authentication ticket data is 
simultaneously managed as the number of times of available (ST6101)When the 
use approval procedure starting information 6101 is giventhe authentication ticket 
data 31 1 1 via the 1st transmission and reception means 31 1 as authentication 
ticket Ticket305The using frequency 6102 obtained by lengthening from the 
number of times of effective taken out from the authentication ticket after 
remaining and reducing the number of times of available one via the 1st (ST6102) 
transmission and reception means 311 as approval demand Authorize 
Request602It sends to the approval server means 63 (ST6103)and the number of 
times 31 12 of effective taken out from authentication ticket data is further sent to 
the multi stage hash means 317. 

[0153]On the other handin the approval server means 63Authentication ticket 
Ticket305 and approval demand Authorize Request602 are received by the 3rd 
transmission and reception means 331 The authentication ticket data 3301 is taken 
outit is sent to the attestation child verifying means 333the using frequency 6301 
is taken outand it is sent to the ticket update indication means 631 (ST6301). 
approval — a time check — the means 332the attestation child verifying means 
333and the ticket effective judging means 334 operating almost like the case of 
drawing 5 and drawing 6 andHoweverthe server identifier 6302 is sent to the ticket 
update indication means 631 besides the ticket effective judging means 334and 
the effective notice 6303 is sent to the ticket update indication means 631 and 
the 2nd random number generating means 632. If the effective notice 6303 is 
giventhe ticket update indication means 631 Connect the ticket identifier 3305the 
server identifier 6302and the using frequency 6301 and the authentication ticket 
history update indication data 6304 is generatedpassing the 3rd transmission and 
reception means 331 — as authentication ticket history update indication 
Update603 — the authentication ticket management tool 64 — sending (ST6302) 
— it sends to the 3rd multi stage hash means 336 by making using frequency 6301 
into the using frequency 6306 as it is. When authentication ticket history update 
indication Update603 is giventhe authentication ticket management tool 64The 



value which searches under a ticket list using a ticket identifierand shows the 
corresponding number of times of effectivelt is confirmed that it is in agreement 
with the sum total of the corresponding value which remains and shows the 
number of times of availableand the using frequency by which authentication ticket 
history update indication Update603 is accompaniedlf rightthe value which shows 
the number of times of remaining available under ticket list will be reduced oneand 
if not rightauthentication ticket rejected note Reject606 is returned. The 
authentication ticket rejected note 606 is sent to said ticket update indication 
means 631 as the authentication ticket rejected note data 6305 via the 3rd 
transmission and reception means 331 in the approval server means 63. Although 
the ticket update indication means 631 is sent to the approval collation means 337 
as it is by making the multi stage hash value 3306 into the multi stage hash value 
331 2if the authentication ticket rejected note data 6305 is givenit will deter this. If 
the effective notice 6303 is givenwhile the 2nd random number generating means 
632 will newly generate the challenge random number 6307 for data disturbance at 
random and will send it to the 2nd exclusive OR means 633It sends to the client 
means 61 as approval challenge Challenge604 via the 3rd transmission and 
reception means 331 (ST6303). 

[0154]On the other handin the client means 61 it is received by the 1st 
transmission and reception means 31 1the challenge random number 6103 is taken 
outand approval challenge Challenge604 is sent to the 1st exclusive OR means 
612 (ST6104). When the use approval procedure starting information 6101 is 
giventhe multi stage hash means 317From said secret memory measure 316the 
hash value 31 13 is obtainedhash operation H of the number of stages which is 
equivalent to the difference of the number of times 31 1 2 of effective and the using 
frequency 6102 at the hash value 3113 is performedand the multi stage hash value 
6104 of a result is sent to the 1st exclusive OR means 612. When the use 
approval procedure starting information 6101 is giventhe 1st exclusive OR means 
612EXCLUSIVE OR operation for every bit is performed between the multi stage 
hash value 6104 and the challenge random number 6103The disturbance multi 
stage hash value 6105 is generatedand it sends to the approval server means 63 
as approval challenge answer Response605 via the 1 st transmission and reception 
means 311 (ST6105ST6106). Since hash operation H cannot calculate this 
disturbance multi stage hash value 6105 for the sufficiently safe third party who 
does not know the password PWthe random number ROand a challenge random 
number as long as iton the other handhas tropismthe length of a resultand random 
naturelt is shown that it is a valid user which gets to know the password PW by 
this disturbance multi stage hash value 6105. Since many number of stageses of 
hash operation H in a multi stage hash value are performed so that it went back in 
the past and the following multi stage hash value is also incalculable from this 
multi stage hash value 6104there is also no necessity for encryption. Generally it 
is supposed 100 or more times [ operation / code ] that it is hash operation a high 
speedand if it is a suitable number of stagesit can process at high speed than the 
case where a code is used. 



[0155]On the other handin the approval server means 63it is received by the 3rd 
transmission and reception means 331 the disturbance multi stage hash value 6308 
is taken outand approval challenge answer Response605 is sent to the 2nd 
exclusive OR means 633 (ST6304). The 2nd exclusive OR means 633 performs 
EXCLUSIVE OR operation for every bit between the challenge random number 
6307 and the disturbance multi stage hash value 6308obtains the multi stage hash 
value 6309and sends it to the 3rd multi stage hash means 336 (ST6305). The 3rd 
multi stage hash means 336 performs hash operation of the number of stages 
equivalent to the using frequency 6306 to the multi stage hash value 6309and 
sends the secondary multi stage hash value 3314 of a result to the approval 
collation means 337. The approval collation means 337 operates like the case of 
drawing 5 and drawing 6 sends the notice data 3315 of approval to the client 
means 61 as notice Resultof approval308 via the 3rd transmission and reception 
means 331 and is received in the client means 61. Howeverit is not this limitation 
when supply of the multi stage hash value 3312 is deterred by reception of 
authentication ticket rejected note Reject606 (ST6306ST6307). By this methodthe 
client means 61 can obtain use approval to two or more approval server means 
using the authentication ticket 305 to n timeswithout revealing the password PW 
to a third party including the approval server means 63. 

[0156]Although it had composition which calculates a multi stage hash value in the 
client means 61 at every use approval procedure in the above explanationit is good 
also as composition which carries out precomputation of the multi stage hash 
value of all the number of stageses at the time of acquisition of an authentication 
ticketand is memorized to the secret memory measure 316. In that caseprocessing 
time for every use approval procedure of what needs to use the more nearly mass 
Tampa-proof nature memory device as the secret memory measure 316 can be 
shortened more. 

[0157]Thusthe single sign-on type authentication system with high convenience 
which can use an authentication ticket in common to two or more approval 
servers under the method with which an authentication ticket is not updated can 
consist of this embodiment. 

[0158](An 8th embodiment) The authentication system of an 8th embodiment can 
carry out decentralized administration of the use of an authentication ticket. 
r0159] Drawing 20 is a protocol sequence diagram showing the protocol of this 
authentication system. In drawing 20 the client means 71 the authentication server 
means 72and the approval server means 73 differ from drawing 14 and it has added 
the 2nd [ further ] approval server means 74. The point accompanied by the using 
frequency k in approval demand Authorize Request701 Approval demand Authorize 
Request701. Authentication ticket Ticket305 [ and ]. Authentication ticket history 
reference Inquiry702 accompanied by the ticket identifier TID and the server 
identifier SID which the received approval server means 73 took out from approval 
demand Authorize Request701 and the authentication ticket 305and the using 
frequency k. The point sent to the authentication server means 72 or the 2nd 
approval server means 74the point that authentication ticket rejected note 



Reject705 is returned if needed to thisThe point accompanied by the random 
number Rk generated so that it might differ each time instead of approval 
challenge Challenge703 being the using frequency kThe points accompanied by the 
result of having carried out EXCLUSIVE OR operation with Rk to the result which 
approval challenge answer Response704 gave hash operation [ of +one step of n- 
k ] H to connection by the password PW and the random numbers RO further differ. 
[0160]By this methodthe client means 71 without revealing the password PW to a 
third party including the approval server means 73 and the 2nd approval server 
means 74Use approval can be obtained to n times using the authentication ticket 
304 or the updated authentication ticket 501 In order to send and check the using 
frequency k to the authentication server means 72 or the 2nd updated approval 
server means 74 which published the authentication ticket via the approval server 
means 73 from the client means 71 The authentication ticket 304 can be made 
available in common by two or more approval server means 73 and 74and the 
traffic of check processing can be decentralized. 

[0161]It explains referring to drawing 21 for the composition with such a protocol 
sequence of an authentication system. Also in drawing 21t he client means 71the 
authentication server means 72and the approval server means 73 differ from 
drawing 15 and it has added the 2nd [ further ] approval server means 74. Differing 
from the client means 51 of drawing 15 in the client means 71 While holding an 
authentication ticketthe ticket maintenance management tool 711 which manages 
the using frequency k is established instead of the ticket holding mechanism 
511 the 1st exclusive OR means 712 that performs EXCLUSIVE OR operation for 
every bit is establishedand it is in the point of having changed a part of connection. 
Differing from the authentication server means 32 of drawing 15 in the 
authentication server means 72 establishes the ticket issue management tool 721 
which manages issue of an authentication ticket and is answered to referenceand 
it is at the point of having changed a part of connection. Differing from the 
approval server means 53 of drawing 15 in the approval server means 73The 
renewal management tool 731 of a ticket which manages renewal of an 
authentication ticket and is answered to reference while remaining with the ticket 
identifier of an authentication ticket and the number of times of effectivereceiving 
the number of times of available and supplying each part is established instead of 
the ticket use management tool 531 The 2nd exclusive OR means 733 that 
performs EXCLUSIVE OR operation for every 2nd 732 bit random number 
generating means that generates a random number for every use approval 
processing is establishedand it is in the point of having changed a part of 
connection. The 2nd approval server means 74 has the same composition as the 
approval server means 73. 

[01 62]It can be used as the ticket maintenance management tool 711 being able to 
add the adder circuit which calculates using frequency to the same composition as 
the ticket holding mechanism 511. As the 1st and 2nd exclusive OR means 712 
and 733a logic circuit can be usedfor example. The combination of the arithmetic 
circuit and comparison circuit which compare the logic circuit which performs 



division combination of datafor exampleand using frequency as the ticket issue 
management tool 721 and a mass memory device can constitute. The combination 
of the arithmetic circuit and comparison circuit which compare the logic circuit 
which performs division combination of datafor exampleand using frequency as the 
renewal management tool 731 of a ticketand a mass memory device can constitute. 
As the 2nd random number generating means 732the same composition as the 
random number generating means 324 can be used. Each above-mentioned means 
may be realized using the computer program on a microcomputer or a general 
purpose computer. Or it may record on a program recording medium in the form 
which can read the computer programand the composition combined with the 
program-recording-medium reader may realize. 

[01 63]It explains referring to drawing 22 f or operation of the authentication system 
constituted as mentioned above. Herethe case where authentication demand 
Authenticate Request301 is accompanied by the number of times n of 
authentication ticket effective is explained. 

[0164]Firstthe operation in the client means 71 in a user authentication procedure 
and the authentication server means 72 is the same as that of the case of drawing 
15 and drawing 16 almostand authentication ticket Ticket304 is eventually sent to 
the client means 71 from the authentication server means 72. Howeverin the client 
means 71 the ticket maintenance management tool 71 1 operates the ticket holding 
mechanism 51 1 at this time. In the authentication server means 72the number of 
times 7201 of effective taken out from authentication demand Authenticate 
Request301 is sent to the ticket issue management tool 721 besides the multi 
stage hash means 325 and the attestation child addition means 328The server 
identifier 7202 is sent to the ticket issue management tool 721 besides the 
attestation child addition means 328and the ticket identifier 7203 generated by the 
ticket identifier creating means 327 is sent to the ticket issue management tool 
721 besides the attestation child addition means 328. The ticket issue 
management tool 721 has managed the published ticket listand the group of the 
number of times 7201 of effective as a value which remains with the ticket 
identifier 7203the server identifier 7202and the number of times 7201 of 
effectiveand shows the number of times of available is added to a ticket listand it 
memorizes it (ST7201). 

[0165]On the other handin the client means 71 it is received by the 1st 
transmission and reception means 31 1 the authentication ticket data 31 10 is taken 
outand authentication ticket Ticket304 is sent to said ticket maintenance 
management tool 711. Said ticket maintenance management tool 71 1 matches the 
authentication ticket data 31 10 with the server identifier 31 01 and holds itRemain 
and the number of times of effective taken out from authentication ticket data is 
simultaneously managed as the number of times of available (ST7101)When the 
use approval procedure starting information 7101 is giventhe authentication ticket 
data 31 1 1 via the 1st transmission and reception means 31 1 as authentication 
ticket Ticket305The using frequency 7102 obtained by lengthening from the 
number of times of effective taken out from the authentication ticket after 



remaining and reducing the number of times of available one via the 1st (ST7102) 
transmission and reception means 311 as approval demand Authorize 
Request701It sends to the approval server means 73respectively (ST7103)and the 
number of times 31 12 of effective further taken out from authentication ticket 
data is sent to the multi stage hash means 317. 

[0166]On the other handin the approval server means 73Authentication ticket 
Ticket305 and approval demand Authorize Request701 are received by the 3rd 
transmission and reception means 331 The authentication ticket data 3301 is taken 
outit is sent to the attestation child verifying means 333the using frequency 7301 
is taken outand it is sent to the renewal management tool 731 of a ticket (ST7301). 
[0167]approval — a time check — the means 332the attestation child verifying 
means 333and the ticket effective judging means 334 operating almost like the 
case of drawing 15 and drawing 1 6 andHoweverthe server identifier 7302 is sent to 
the renewal management tool 731 of a ticket besides the ticket effective judging 
means 334and the effective notice 7303 is sent to the renewal management tool 
731 of a ticketand the 2nd random number generating means 732. If the published 
ticket list is managed and the effective notice 7303 is giventhe renewal 
management tool 731 of a ticketConnect the ticket identifier 3305the server 
identifier 7302and the using frequency 7301 and the authentication ticket history 
inquiry data 7304 is obtainedWhile sending authentication ticket history reference 
Inquiry702 to the authentication server means 72 or the 2nd approval server 
means 74 which the publisher identifier 3308 shows via the 3rd transmission and 
reception means 331 The group of the number of times 7301 of effective as a value 
which remains with the ticket identifier 3305the server identifier 7302and the 
number of times 7301 of effectiveand shows the number of times of available is 
added to a ticket listand is memorized (ST7302). 

[0168]In the authentication server means 72 which received thisit is received by 
the 2nd transmission and reception means 321 and authentication ticket history 
reference Inquiry702 is sent to said ticket issue management tool 721 as the 
authentication ticket history inquiry data 7205 having contained a ticket identifiera 
server identifierand using frequency. The using frequency taken out from the 
authentication ticket history inquiry data 7205 said ticket issue management tool 
721 It investigates whether it is in agreement with what remained with the number 
of times of effective managed itselfand was added to the difference with the 
number of times of available oneand in being inharmoniousit returns the 
authentication ticket rejected note data 7204 as authentication ticket rejected 
note Reject705 via the 2nd transmission and reception means 321. When the 2nd 
approval server means 74 receives thisthe role as said ticket issue management 
tool 721 with same renewal management tool of a ticket is performed. 
[0169]In the approval server means 73the authentication ticket rejected note 705 
is sent to said renewal management tool 731 of a ticket as the authentication 
ticket rejected note data 7305 via the 3rd transmission and reception means 331. 
Although said renewal management tool 731 of a ticket is sent to the approval 
collation means 337 as it is by making the multi stage hash value 3306 into the 



multi stage hash value 5302it remains with a ticket identifier and the group 5303 of 
the number of times of available and a server identifier is sent to the 2nd 
attestation child addition means 533These will be deterred if the authentication 
ticket rejected note data 7305 is given. If the effective notice 7303 is givenwhile 
the 2nd random number generating means 732 will newly generate the challenge 
random number 7306 for data disturbance at random and will send it to the 2nd 
exclusive OR means 733It sends to the client means 71 as approval challenge 
Challenge703 via the 3rd transmission and reception means 331 (ST7303). 
[0170]On the other handin the client means 71 it is received by the 1st 
transmission and reception means 31 1the challenge random number 7103 is taken 
outand approval challenge Challenge703 is sent to the 1st exclusive OR means 
712 (ST7104). When the use approval procedure starting information 7101 is 
giventhe multi stage hash means 317From said secret memory measure 316the 
hash value 31 13 is obtainedhash operation H of the number of stages which is 
equivalent to the difference of the number of times 3112 of effective and the using 
frequency 7102 at the hash value 31 13 is performedand the multi stage hash value 
7104 of a result is sent to the 1st exclusive OR means 712. When the use 
approval procedure starting information 7101 is giventhe 1st exclusive OR means 
712EXCLUSIVE OR operation for every bit is performed between the multi stage 
hash value 7104 and the challenge random number 7103The disturbance multi 
stage hash value 7105 is generatedand it sends to the approval server means 73 
as approval challenge answer Response704 via the 1st transmission and reception 
means 311 (ST7105ST71 06). Since hash operation H cannot calculate this 
disturbance multi stage hash value 7105 for the sufficiently safe third party who 
does not know the password PWthe random number ROand a challenge random 
number as long as iton the other handhas tropismthe length of a resultand random 
naturelt is shown that it is a valid user which gets to know the password PW by 
this disturbance multi stage hash value 7105. Since many number of stageses of 
hash operation H in a multi stage hash value are performed so that it went back in 
the past and the following multi stage hash value is also incalculable from this 
multi stage hash value 7104there is also no necessity for encryption. Generally it 
is supposed 100 or more times [ operation / code ] that it is hash operation a high 
speedand if it is a suitable number of stagesit can process at high speed than the 
case where a code is used. 

[0171]On the other handin the approval server means 73it is received by the 3rd 
transmission and reception means 331the disturbance multi stage hash value 7307 
is taken outand approval challenge answer Response704 is sent to the 2nd 
exclusive OR means 733 (ST7304). The 2nd exclusive OR means 733 performs 
EXCLUSIVE OR operation for every bit between the challenge random number 
7306 and the disturbance multi stage hash value 7307obtains the multi stage hash 
value 7308and sends it to the 3rd hash means 532 (ST7305). The 3rd hash means 
532 performs hash operation to the multi stage hash value 7308and sends the 
secondary multi stage hash value 5305 of a result to the approval collation means 
337. The approval collation means 337 and the 2nd attestation child addition 



means 533 operate like the case of drawing 15 and drawing 16 and send the 
authentication ticket data 5308 to the client means 71 as authentication ticket 
Ticket501 via the 3rd transmission and reception means 331. Howeverit is not this 
limitationwhen it remains with the multi stage hash value 5302 and a ticket 
identifier by reception of authentication ticket rejected note Reject705 and supply 
of the group 5303 of the number of times of available and a server identifier is 
deterred (ST7306ST7307). 

[0172]On the other handin the client means 71 It is received by the 1st 
transmission and reception means 31 land authentication ticket Ticket501 is sent 
to said ticket maintenance management tool 71 1 as the authentication ticket data 
51 01 is held (ST7107ST7108)and is used in a next use approval procedure. 
[0173]Since the number of stages of the disturbance multi stage hash value by 
which the authentication ticket 305 sent to the approval server means 73 is 
accompanied decreases every [ 1 ] for every use approval and it goes from the 
client means 71 by thisin the approval server means 73what is necessary is just to 
perform one step of hash operationand it can shorten response time. Since a time 
stamp is updatedit can set to the shortness of the grade which can cover the 
interval of access to the term of validityfor examplel hourand the user 
convenience can improve safetywithout making it fall. By this methodthe client 
means 71 using the higher authentication ticket 305 of safetywithout revealing the 
password PW to a third party including the approval server means 73 and 74 to n 
timesUse approval can be obtained in shorter response timeand the authentication 
ticket is available in common at two or more approval serversand can decentralize 
the traffic of check processing. 

[01 74] Although it had composition which calculates a multi stage hash value in the 
client means 71 at every use approval procedure in the above explanationit is good 
also as composition which carries out precomputation of the multi stage hash 
value of all the number of stageses at the time of acquisition of an authentication 
ticketand is memorized to the secret memory measure 316. In that caseprocessing 
time for every use approval procedure of what needs to use the more nearly mass 
Tampa-proof nature memory device as the secret memory measure 316 can be 
shortened more. 

[0175]Thusdecentralized administration of the use of an authentication ticket can 
be carried out by constituting an authentication system like this embodiment 
under the method with which an authentication ticket is updated. Thereforeone 
management resource can be lessened more. 
[0176] 

[Effect of the Invention]In this inventionsingle sign-on type the authentication 
method and authentication system which cannot need cipher processing in a client 
sidebut can manage the use count of an authentication ticket easilyand can 
eliminate [ 1st ] double use are obtained so that clearly from the above 
explanation. 

[0177]In a user authentication procedurecipher processing in a client side is not 
needed for the 2ndand also single sign-on type the authentication method and 



authentication system which can communalize data processing of attestation 
presentation information and data processing of presentation information are 
obtained. 

[0178]In what generates [ 3rd ] collation information by making into confidential 
information the random number for attestation which the client means generated. 
Since the collation information which an authentication ticket includes becomes 
unrelated to user authentication informationeven a possibility that user 
authentication information will be guessed cannot be found and single sign-on type 
an authentication method and an authentication system with higher safety are 
obtained from an authentication ticket. 

[0179]By 4th on the other hand performing irreversible arithmetic operation of 
confidential information by tropism hash operationeven if a client side is a device 
with low computation capabilitysingle sign-on type the authentication method and 
authentication system which can perform use approval processing by practical 
processing time are obtained. 

[0180]To the 5than approval server means by what updates the collation 
information of an authentication ticketetc. Since it is updated whenever an 
authentication ticket uses itand especially a time stamp is updated and the term 
of validity in an effective judging can be set up shorterSingle sign-on type the 
authentication method and authentication system which possibility of the 
unauthorized use by a third party can be made smallerand can shorten the 
response time of use approval further are obtained. 

[0181]In what established the authentication ticket management tool which 
manages [ 6th ] the use count of an authentication ticket. In the system by which 
an authentication ticket is not updatedsince it becomes possible to use an 
authentication ticket in common to two or more approval serverssingle sign-on 
type an authentication method and an authentication system with higher 
convenience are obtained. 

[0182]To the 7than authentication server means and an approval server means by 
what memorizes the issuance history of an authentication ticket. In the system by 
which an authentication ticket is updatedsince the decentralized administration of 
the use of an authentication ticket can be carried outsingle sign-on type the 
authentication method and authentication system which can lessen one 
management resource more are obtained. 



DESCRIPTION OF DRAWINGS 
[Brief Description of the Drawings] 

[Drawing 1] The key map showing the outline of the authentication system in a 1st 
embodiment of this invention 

[Drawing 2] The key map showing the outline of the authentication system in a 2nd 
embodiment of this invention 

[Drawing 3] The key map showing the outline of the authentication system in a 3rd 



embodiment of this invention 

[Drawing 4] The protocol sequence diagram of the authentication system in a 4th 
embodiment of this invention 

[Drawing 5] The functional block diagram of the authentication system in a 4th 
embodiment of this invention 

[Drawing 6] The flow chart showing operation of the authentication system in a 4th 
embodiment of this invention 

[Drawing 7] The detailed functional block diagram of the attestation child addition 
means at the time of using a message authorization code in the authentication 
system in a 4th embodiment of this invention 

[Drawing 8] The detailed functional block diagram of the attestation child verifying 
means at the time of using a message authorization code in the authentication 
system in a 4th embodiment of this invention 

[Drawing 9] The detailed functional block diagram of the attestation child addition 
means at the time of using a digital signature in the authentication system in a 4th 
embodiment of this invention 

[Drawing 10] The detailed functional block diagram of the attestation child verifying 
means at the time of using a digital signature in the authentication system in a 4th 
embodiment of this invention 

[Drawing 1 1] The protocol sequence diagram of the authentication system in a 5th 
embodiment of this invention 

[Drawing 12] The functional block diagram of the authentication system in a 5th 
embodiment of this invention 

[Drawing 13] The flow chart showing operation of the authentication system in a 
5th embodiment of this invention 

[Drawing 14] The protocol sequence diagram of the authentication system in a 6th 
embodiment of this invention 

[Drawing 15] The functional block diagram of the authentication system in a 6th 
embodiment of this invention 

[Drawing 16] The flow chart showing operation of the authentication system in a 
6th embodiment of this invention 

[Drawing 17] The protocol sequence diagram of the authentication system in a 7th 
embodiment of this invention 

[Drawing 18] The functional block diagram of the authentication system in a 7th 
embodiment of this invention 

[Drawing 19] The flow chart showing operation of the authentication system in a 
7th embodiment of this invention 

[Drawing 20] The protocol sequence diagram of the authentication system in an 
8th embodiment of this invention 

[Drawing 21] The functional block diagram of the authentication system in an 8th 
embodiment of this invention 

[Drawing 22] The flow chart showing operation of the authentication system in an 
8th embodiment of this invention 

[Drawing 23] The key map showing the outline of the conventional authentication 



method 

[Drawing 24] The protocol sequence diagram of the conventional authentication 
method 

[Drawing 25] The functional block diagram of the conventional authentication 
method 

[Drawing 26] It is a flow chart showing operation of the conventional authentication 
method. 

[Description of Notations] 
11121314151617181 client means 
212223242627282 authentication server means 
333536373and 83 Approval server means 
414and 24 Confidential information 
57803805 authentication tickets 
6 and 804 Presentation information 
8 and 806 Notice of approval 

1323and 801 Attestation presentation information 
64 Authentication ticket management tool 
74 The 2nd approval server means 

311 The 1st transmission and reception means 

312 and 81 1 Input means 

313 Hash means 

314 Ticket holding mechanism 

316 A secret memory measure 

317 Multi stage hash means 

321 The 2nd transmission and reception means 

322 attestation — a time check — a means 

323 Authentication information storage means 

324 Random number generating means 

325 The 2nd multi stage hash means 

326 Attestation collation means 

327 Ticket identifier creating means 

328 Attestation child addition means 
328A self-identifier storage means 
328B data connecting mechanism 
328C connection data hash means 

328D server common key memory measure 
328E common key system cryptographer stage 
328F attestation child connecting mechanism 
328G self-secret key memory measure 
328H public key system cryptographer stage 

331 The 3rd transmission and reception means 

332 approval — a time check — a means 

333 Attestation child verifying means 

333A attestation child separating mechanism 



the [ 333B ] — the connection data hash means of two 

the [ 333C ] — the server common key memory measure of two 

the [ 333D ] — the common key system cryptographer stage of two 

333E data separation means 

333F publisher identifier collation means 

333G comparison means 

333H server public key accumulation means 

333J public key system decoding means 

334 and 832 Ticket effective judging means 

335 and 531 Ticket use management tool 

336 The 3rd multi stage hash means 

337 Approval collation means 

41 1 The random number generating means for attestation 
412612and 712 The 1st exclusive OR means 

421 The 2nd hash means 

422 The 2nd exclusive OR means 

423 The 2nd multi stage hash means 
511 Ticket holding mechanism 

532 The 3rd hash means 

533 The 2nd attestation child addition means 

61 1 and 71 1 Ticket maintenance management tool 
621 Ticket registration instruction means 

631 Ticket update indication means 

632 The 2nd random number generating means 

633 and 733 The 2nd exclusive OR means 
721 Ticket issue management tool 

731 Renewal management tool of a ticket 

732 The 2nd random number generating means 

812 Session key decoding means 

813 proof — a time check — a means 

814 Certification information cryptographer stage 

821 Session key creating means 

822 Session key cryptographer stage 

823 Ticket cryptographer stage 
831 Ticket decoding means 

833 Certification information decoding means 

834 Certification information effective judging means 

835 Approval collation means 



09)B#a#fm* (jp) 



02) 2t m 45 1* & $R ca> 



*£W2000 -222360 
(P2000- 222360 A) 
(43)&WB ¥*S12^8 /ill B (2000.8. 11) 



(51) IntCl. 7 
GO 6 F 



GO 6K 
H04L 



15/00 
12/14 
13/00 
17/00 
9/32 



3 3 0 
3 2 0 
3 54 



F I 

G 0 6 F 15/00 
12/14 
13/00 

G 0 6 K 17/00 
H 0 4 L 9/00 



330B 5B017 

320C 5B058 

354Z 5B085 

T 5 B 0 8 9 

675A 5J104 



*3Sl2K St#«0*29 OL (£48H) 



(21)ffl*#^ 


ttRPPl 1-24446 


(71) WRA 


000005821 










(22)WBIB 


W-mi*Z2Z 1 B (1999. 2.1) 




ARJ»n*TpA^R*1006»* 






(72)$8W# 










AEJSPWmA^nmooeftflfi #T*S 














(72)569I# 


i*tU 








ARJ&nXrtJA^FWiooeStfs grow 














(74)«SA 


100099254 








#3S± S (fl-3«) 











(54) i&wvzm tm%&, t&U'>^^Rtmm&m^aif7Atdmim 



(57) 

[PSM 1 [Hl«353.-+f'ggiIT«»lHl©7 7 ^*A^I1 : Rl 

Si 4 K^rT^H f £ n E*t& ^ TcK^lf $8=£SA,7c!8 
k[°l^T>5:o7cS^tf«*l§Rl-9— fgoT 




3 K»W-/<#lt 



(2) 



1tBS 2000-222360 



m&mM em?** h*»*5-r*BEit-/<*JB! 

K»EBtt»- /WWcBE**y h*TOU SuEBpJ 

+*■- /twwcBBf*-» hofyBBRT******^ 

tfJbEHKtfn (nlilEBtt) ?S«BE?-9->J' h£«J# 
U C n^jS LT#USBrT**46* * 5 -f T 7 > h # IS 

#UOTBBE**-v h£B*LT*l«*BRrT*BRT9- 
-/^«t*JMiU MBBIEf hit KB 

■§-?*iTfcu, BeB^Hima. shebe-9— 

plfflJIIIt^nlHlBSLfctcDTfeUs SuEBE^ 
BffiSltttfk (kttnWTOIEMR) ?**£*©»E 
BaHIMld:. «E««fll«lcWEWBfl)^iaBIW* n 
- k BBLfct,©?*** C t^ttatt-r^Bil^XT 1 
A 0 

DH&H2] SfJIBSEtJ— /Wift n— tfBHE1f« 
tfflU BE*^'T7 , :/h*«£©IBT l a— *BE# 
B*«fTLT«BBlE**-y h«tfTT4C£*W«£ 
tclBB©BIE->XxA. 

[B3?H3] BEBEtf— /WW 5 * a-UBESi 
icfcl/'T&ttfc^dEU Ctl*^LTlufB^-7'f7»> h 
*BWcBliEBSMlWI*B*L» BEttBflHRtis SuEa 

-ifBE««<tBuiBSLatoa«ic^iams<D^Rij£SR 

1 1UJJt±fifi Lfcfc©T'fc U x BUlBBSE3S^1f 
BUlBteffitflfi^BijfBmSW^prffijSllf* n SB6Lfct.ro 

Ao 

[mfcJS4] MEBEtf- a— tfBSE^B 

KBEH^ttSB^S^U ftEBEaaHIHBtf. WE2 
-+f BEIff BSlttuESSLB <b OBBU: S3 Effi^O* rKS! 

«LfcBiiEBajkt©i*fSttBa»3ai*»T»y. so 

EffiffiltBtf, WEBE»5Mt»frS»«*ft*B9EB 
EJB&tt?**C t*»«iT5««S2 KEttOBE 

[B3CTI5] ItEa- •fBEimbK. a— tflcfcUA 

S 4 ro^-m*HCIBKCDBE->7.7 1 A 0 

[»5RJS6] «Ea- tfBE1t«J!>\ IMMNcEJ** 
nfcJ6BB&SCB«BT**C t*»«tr*B**2 
A > 54©^rft6HcEIE©BE->7.5 1 A < > 

MUMS 7] mGBBTtfs ^'yt-yna-KT* 

©BEf^^A. 
[ft^JS8] 85EBEW f-^JH*T'65Ct 



*WBtr*BBfl1 1 6 6 ©l*rftJtPfcE«©BE5' 

jl 5SII T35 2>Z£*&Wit "T 1 S 8 ©ivf 

tiAHcfBerolgE-VX^Ao 

1 0 ] SuEBE^ 4" y h +J— / <BS'J? * 
^tril •h^S^T*!!*^ 1 fr6 9 4>l^r*ifr£CB 
©BEi'X-^Ao 

z.tz&m£Tznm&i frs 1 oro^-mancEe© 

2] SuEEE^* »ff#BBI?* 

kibbri-9— wmtz^Tztttizm 

EBE^-Jr-v !-©I!B-ft11HBt*abEI»tBffH^tBff 
#BSU?<!:BE^<!:*M«iL. SuEK8£tt$fi/>\ SuSBS 
WWBlcBIBmBO^PljBaiB* n - k SffiLfctWlc 

Si<hr^lS5R«1 1 icEtEWBEfX^Ao 
[HSBBl 3] SulBBRl+t- K¥SJb\ WEBE** 

iNcEDUDBEfX^Ae 
[B^JS 1 4 ] SuE? 5 -f T 7 > h StEEE? 1 

B5RJS 16^61 2©l/»**:hiNcE«©BE5>*xA. 

[ftmiii si «arosuiBBRr-t-/\"^a<t:, suibb 

t^ixTfc'J, mi^^-<T>Y-^mit. StiBBEf- 
<r y K0&m\£l&*'emLT3$V. SulBBE^^-v h<h 

^:t^^^:n^LT^|JfflBB^^iR46^ i troT•fe^J^ SuiB 

BE+t-y^eii. SuIBBE^'yy h^^-rsttt 
icSufBBE^^-y heS#SlcfutBBE5 1 'ir-y K©^t 
IS^J^Lv SufBBRl+t-/\'#iei±. SulBBE^^ry 
hroa^^g^TSulBBE^^-v hga^SlcSulBBE 
^^r-y h©«KK«r**SSLs SitfBBIiE^'Jry hgg? 
SJ: »J *BIBlffl*Sl*fcJi«'lctt*JffiBRl Lfe^C 
ftWltTZiti&mi ^8 1 1 <7)^TnAH::iaEroBE-> 

6] BEBrI*-/^«*«B««.» S5IB 
•J'^^T'Vh^lftli. ttKBE*** h<DflEJBlH]»*« 
ILTfi'J, BulBBE^^-y h title Cti*^LT*"J 
fflBoJ^«65 i fc©T«y, SufBBE H t-/^iei±. Su 

WEBrI-9— SuEBE^^y h^MSTr*.!: 
^^ICKRBBSEB U fiEBKf** hW^^g 
ttTSOEBE^^ h ©Bff#«9J* SrfiaEBE-9- 
fcttSOEBRl-y— y^SlcSSEBE^^r ■> h 
OBM^^ Lx SuEBE-t-M^SSfcliSuElSRr^ 

-M , ^ift t fcyiii|ifeiifl]^gitfc«^iciifyffiBRrL^u 
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zt*&mt? 2>iS5R3Si 2u:EewBE->X7 i Ao 

Sit* n - k @MLfc 1 fc©<tmK&»£©flHfeWi!fc3*n 
^TflAHcEKOBBi/X^Ao 

[ftiRJai 8] BE^y-y h£#^-f£BB-y-/\"# 
K<h. BE^y-y h©3ftl«*BRTT*ttRr?-/t*« 

MGSB-9— /iMB£BIE^7 h*H*U BE 
BW- MSMftKBE^y-y h©£JJIBpr*R* , *"*v' 
^-TT'V h*«£*Ba.*BSE5/*xI*fctel^T» 
ME^-TT'V a— tf«9J?ta— tfBEIf 

*tt-/WJ?iBEf^'> h©*»HHIIIffl>Aa*1f 
*A**«is BuEBE+t-A^KcfcyBE^y-y h=£ 
WTBJtU BBBW- /t*J«c«SRT***-y h« 
euE^y-y HBWfti'JBW*-* h<*>* 

ftiif^i^^Tftis^awrsiQaatR^iftis busbar 

#® «fc y a— tfBffitil <!: <t t ictuiBBSE-y— i < 

<fc y fi,»**#Ts CtiS ©SSteU: / \ -v -> a.3W*B 
f / \ y -> a ^ Ift <t > iu SBM y -> a «fc y »fc / \ y -> a. 
B*W»«(cE1fr*««E1i#«i:» ME«»E«¥ 
SJ: y/\y ->ag««»J tU LT« n— yBE^JBfcfcL" 
Tl*iufBA*#a«fcy*JaiHl»n (nUjEBtt) *# 
T* n ©<D/ \ y -> a SWfcB LT*fc$fft/ \ y ~> affi* 
mlEBB^-; Pistes y » f "J/SB^IiIKfc^Tlifu 
IBBRl-y— /^S<fcy*iJffll2l»k (kttnfcCFOIESI 
St) n-k!6(3!)/\y->a3III^B6LT^fc^S 
/ \ y -> affi£ WEB pj-y- / 2£3 \ y -> a * 
«£*JHHU 

WEBE+>— J^mt\ a - +fBE1f SB * nfcB 
E1WI»«*«t. SLK*£«LT«Ev^-r7'>h* 
«lcai*SLtt£«*«£* mEBE1«BB«#«J: *J » 
fca— 9TSE1t« t »BSU»^«#«TSfiE LfcajBtt 
fl)2g(Cn+1 IS©My->a3III^^am2(D^SM 
•y->n.3Mft<hx WE^-y-fT'V h#S«t y ?#fc*a/\y 

> ate* hub am 2 o^g/ \ y -> a ^mtm&w \ y -> 

a^it-BB^-r^BESB^S,!:, tM^7 hsffiS'J? 
*&KtWrv hBBMrt^lfti:* BS*J*ttWLW 
*J1«l*ai*r*BEtH»#Bt» WE^y-y hBS'J? 
tllMtyiftWr* hBS'J^ ttEBEIH«*IKJ: 
y ^Tfc^lS; \ y -> a ft HuIBy 5 -T T 7 V h #a «fc U 
«»J?atf *»I5J*» BEBEftBf #S <£ y fttc 

mmmc&-3<$-< >?s atificBE-y-/^ 

«*i*T»»*«»J? ©JtBKBE? *«UD U BE?- 
y- y h <t LTWS* 5 f 7* > h ^SICjMSBE? tttlD* 

BE^^y hOBE^^EtSBE^^E^©^. B# 



*j*ttB*LB**jiiHB*a*"*"*BprttBt*at» +*-- /t 

BgiJ^O&^ttRtf* -f AX * V T't WEB RlltB#^© 
h^Ja^J^Sis BE^^y HO^y hBSU? tM 

m^®t. buib^^ y h?jffl«a*a«t y *jsa» k * 
k sro/ \ y -> a mm *m Lzmc-x&m/ \ y -> a «* 

•BS^SJ: y if^^S/ \ y -> a fit <t SJIBB 3 (D^lft/ \ y 
-> a J; y ^ffc \ y > a « i * bb^-T *B5T 

B^*«a £ * m«s-r ^. c: t e&« <t r ^ be -> x t 1 a„ 

[W«ai 9] tuIBBE?«SQ^I6A\ AHTtt 
»T *«ii«*3OTHHi*IB«-r * V - / \*ttil»f B«# 

e«gij?*Eiir*a«aiTBii*sd:» ^yy 

h BgiJ? <t $gA y -> a ffi t ^5atHl» <h Y A X * > 7 

cfc y ^§fc•l^S7 :r - ic/ \ y -> a am* arr ai^^- 

^y\y->a^S<t:. SuiB-y- n»ifi«B1i^l8«fe y«/c 
ttilg^^Bg^g* ffl ^ T bu IB^^ 5 s - ^ I \ y -> a ^g 
J: y i#/c/ \ y 5/ a fii* ffg^f b LTBE-? <h f ^ ttiiSfcfc 

xCBg^s <t. huib^- <fc y ^t/ijiSx- 

iBulB^iia^iCBg^^iaj; y^fcBE?<t*a^T5 

buIBBE^E^IS^s +t- /«B?**r**3Mte* 
Bg^a*IB1fr^S2©+t-/^jiaiB1f^l6«!:. BE 
^y-y hSJMSx-^tBE^tfcirBr^BE^B 
^S«ts WIBBE?»«#««fey»fc31«7 s -**^^ 

SS^S<t, BufBBE^iBt^lft.fey^fca^x— SUc/\ 
•y v a SK^BST m 2 CDgig ^- M -> a ^K<h . bu 

ibs 2 ©-y— /^«a«E«#s<fe y »fc«ii«*«Bi* 
i^t SuEB 2 ©ais x-^y \ y -> a #® «t y « /= 

y \ y -> a<I£ Bg#<b L Tit^fflBE? <t T 5 SI 2 
B^jCBI^^IS,*:, KEf- 5f7j«#iaJ:y^fc«?f* 

wsij^tf *aa-y— /«BJ?-pa5*c y ^r^. 

y»fcBH-&tt*tf*»*iS-r*&U:aEBBE?»IBI*« 

fcJtRfflBE?<»:*i±RLT)g^«:*^r5J±®^IS<!: 
*M«T^C<!:*ittSl!<!:-r*il^JSl 8lcEtt©BE-> 

[W^il 2 0 ] SuEBE-?«Sn^lg*\ BE-y-/ <© 

^is<ts s«ai?*Eitr*e«gy?Eii#»i. ^y- 
■ftv-i mn&t «Ee«?j?Eii*» «fe y »fc»fr 
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*£#IS<fc U WfciHSx- * icy \ y -> a 3***66* 

— *y\y->a2E|g<!:, BuiBgfcB&BIB«#l&J: y^fcii 

BHKSWMHM* JB l/*T «HS»S r-* / \ y -> i * 

*BBE?iMg#«^ **B U 

Set U ft^iBSx - * * * y h HSU? <t *«/ \ 'v "y 3. 
«gy?tlc»«Lai^)-ri.7 r -^»«#ia:i:. iuiBBfiE 

?»Mt^e «t y wfcaisx- * icy \ y -> a *x*«K-r « 
2 nm&T-?) \ y -> a ^at, 

*ff«ws!i?i=»*5r * iiB«*sw»iiB«* th 

<fc y »fc2BB«*aB»aH«*Jl^T«BBffi?#«l 
«fc *J WfcBlE? *«* L Jtt&ffly \ y 5/ a « <k T 5 ii 
BMt&SC«-**«i:» l91B31ttx-*/\y3/a*««ty 

mtu \ v s> m&amjstm&k <fc y »fcttR 
*«i-r*ct*w«tr*Bi«ai s icisewisiiE->x 

f Ao 

UlXa 2 1 ] WE* 7 -f T > h fStf, BfiE&tt£ 
j$#l&<hSI1 ©SHfi6Mra»¥«4:*Jl«IU BulBSSliE 
/BSL«£fiE#lfttt\ 3.--y's8fiE^)Hlci5^TiSijE>liL«if 
*£EEU WIBK 1 ©S«S«IIS«*BK4» a— tfBSE 
*Hte£^TttEBIiEJBSUR£«#««fc l J »fcBSE/HSL 
ft £ «uf By \ y -> a #® J: y mu \ v 5> a fit £ ©gEffeMfil 
SnaNMefrtt 0 T»fc«SL/ \ y 5/ a«*KHSBBE-9— 

/ tomcat y« toraieeif^aa. mBsxmsjs& 

fi£*lft J: y »fcBIWBSJS*»»BfcK«l U BuE^fS 
y\y ->a#f£li, S5fB«l?BIB1f#S«fc U B&JHURtV 

y as lt, *jjBB^¥MK&^TtnBBRW-/t¥ttJ: 

y f Uffliaa k *?#T. n - k &©y \ y -> a 31**66 LT 

'#tc^ifiy \ y -> afi* ffiiBBRi-y— y ^sicas y . 
ijfBBii-y— y wEBiEiHd*at=«t> y m 2 

©y \ y -> a ^Ift&tfSg 2 ®$Mbttl0Ift#{ft**Ji U 
Su IBM 2 4>y \ y -> a #Sli . BuEBSE1t$6«flt#ia <fc y 

t ©jilglcy \ y -> a 31**66 Lx SulBm 2 ©SMfeWBJl 
Sl^Slis 83E* 2 <0J \ y -> a #S<fc y \ y 5> a fit 
£ buE* 5 -f 7 V h *S J: y »fc«BL/ \ y 3> a«i 0>#t 
fteWffi3»3t***7&^TBiim&*IW§U ittBB 
2 cD^Sy \y ->a #181*, ftfE* 2 (DgEffittttSRl^a 
«fe y SfcBSEfflSLaiC n IgtfV \-v 5/a3W*ff bu 
§BBE?^»D#S«. fflBf*-* hKSiJ?^«#S«fcy 

mit*** \>m&+ «E«2(o*fli/\y->a*««fcy 



aitiBic«-^<*'rAx*>^ MificBSE-y— y^#ia 

^^-rSS^BS'J^a^lcBEE^^fitfiDU BiE^ 1 * 

v h t LTHufB* ; 7-r7'> h^Slc^^c: 

•SSISRS 1 8*^6 2 0<DO>-rn*HCIBffi©BiiEv'X5 ; 

Ac 

2 2 ] BUlBB Pl-y- y tffttf. buIBM 3 

©y \ y -> a #eicf^t> y m 3 ©y \ y -> a ^sst^m 2 © 

BfiE^ttfiD^afcRfli L> buIBSI 3©/\-r>2 *«(4, 
bus B* ^JTS V «t y »f=^S/ n y -> affllcy \ y -> 

a*am**LT»fc— **«/\y->i«*ai* u Suia 

BRlBH^Itttts ItEf*-* hf'Jyl < gS#a c t;y^#fc^ 
Sy \ y -> affii: buIBM 3 \ y a #S«t »J 
Sy \ y -> afil t *8R$ U SulBm 2 £DBBE?«l)n#S 
(i. BuiB^^y h#iJB«3#«J:y»fc**-y HMS'J 
?, +»— /W8!lTStfXiy«inEMt. BuIB*7-<7'>h 

#s<fc y t#f=^ifty \ v 8 /at BuiaBRit+B##a<i: y m 

fcl«*J1WWC»"3< 5r-TAX*>^ MtflcBRl-y— y^ 
#«*Sr»tT««»ITffl31ttlcBli?' *f«lB BU 
^*y htLTBlIiB*5-1'7 , >h#eicSI*c:i:*^a 
<h-r*fM*Jl 1 8 6^6 2 1 0^m<rKlBB«DBBE->X 

[ff^IS2 3] 1 ow±oBRi-y-^#ift<t. BU^ 1 
>ry KOBffaifMffltt-KSBar^BBE^^y h^S 
#®<t*M«lU ItBBB^y HI^S^ bjIBB 
SE+#— y ^gj: y WfcBE^* y h «ff «B»^*t. <t 
ic^y hM»J?t*»EIfttMy3PJffliattt®li** 
1LT, tulBBRl-y-y^lB<fey^fcBiiE^*y KSM 
ES?rJg^<t<7)S-&tt*^x y * L. 3FS-&©a-&lclifl 
IBBRT-y— y^SlcBSE^^y hJ§*fejl5ED*52iy , 

BUiBBU-y— y ^mt\ bb»^ib;« mm 

U MIB^^y hS^Jg^Sl^ BufB^-Jry KBS'J? 
*BE#l6cfcy^fcg L *y hHSiJ^.tBUlB^^-rT'V 
S«ty«fc-y-y«tgiJ ; f-StfS}E«ilHl»t^5BII^*y 
(-^ y <ra^mm ; £^fiELTBuiaBliEf 1 *y hgS^Slc 

sy. 

BuiB*5-rZVh#lgA\ sij|B^*-> hSJt^Slcf^te 
*S«L> SuIB^^y hGarES^Kli. BulBBSEtl— 

y <?s=t y bii^ 1 * y k *^T«*#-r s t t*>imm\°i 
ja^esLT, BuiBBRj-y-y^aic^ns^jf^L. 

bu iB^iey \ y > a ^Slis bu iB«SIB1t#® «fc y y \ y •> 
afi*lK y tfc LTs a-+fBliE#llilcfc^Tlinl&ODy\ 
y -> a 3111*86 LT'mc$W \ y > a fi|*6iJiBBSE^- 

/<¥ae»y« *jfflBRi#«»=fc^TttmiB^*y 

*tBS# «ft «fc y »fcfJffliaR k *^T, n - k K©y \ y 
->a3m*66LT^fc^ay\y->afii*BuiBm 1 <D»fft 

Mtasffi^siciny. SulBm i osfftewmsffl^ieii, 

BuIB^Ifty\-y ->a#S<fe y *#fc:£'l&y\y->atii<!:Bu!BB 
^-y^SJ:y#fcaAi:<0«MB«lB«W«B*S& 
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&y> 

bebri+j— /<#b#, wim'gm^mcttt}* 

f-^r-ybWrntSk^fStt. B2<oa»£B*B£, S2 
©BBWB3BB#«<!:*»BU BE*-** KMHrJi^ 

^«i±, be*** h«B«B*a«fcy»fcWB«Btf 
bbsstb^kbebe^be^b * y Bf=** * h 
Bgy^atf ■*-/ <B8U? t huIe^ 5 t 7 > h^s<t y » 

fcf'JfflEBtfrSBE*** hB«B*»iS*£«LT 

bebe*** h estates y> bebe*** vm 
s^B.fcyBE*** hBBaBtfBsnttfr-afcB^ 

lcmZ?^-<T> h^SJ: y»fcf!JBB» k <tBESE 
?fcE^K=fc y»fcBBv\v 5/aB£*lB*> U BEB 
2 4)StiJf£l5£#Bli. SJk*^aLTI9E^5'fy'>h 
*B»lfBEB2©BfftfiBia?D*«U:jiSys BEB 2 

©BttfiBBSH*«tt. BEB2©sLB£B*««fcy» 

feft»£ BIB* 5 -T 7 > h #« J: y BfcBSLBBv \ v > 
a « t ©*MttttlM«*W*fi * "a T BBS \ v -> a B* 
BMU BEB 3 ©BBnv 5/ a ¥Btt, BEB2 4>B 
ffeWBSffl^BJ: y BfcBfi/ \ v > k B©y \ •> > 

BEBE*** hBS^Sli.. BEBB+f— /fBB£ V 

iBabE»£»yfyB0Bfc©«*«Bu lisniv 

-A*««fc y « fclgfiE^ •> hBEBBB5*£<DB-&14 
-v * U *tt$©«Bl«:U:BEBRT-9— A*Btt: 
BE*** hBB»»*B*E£*BB£*"*HBB1 
8frS2 1 CDLN-rn*HClEKCDBiI->X7 1 Ao 
[«*1S2 4] BRlt>— /^«*1"3W±*itU B 
EBE+J— A#&jb\ f^yh»ffll*a«iU 
BE*** h«*T«S*aii. BE*** hWJ?£J* 
#««fcy»fc**v F>B»J?£BE*5-f 7*V h*««t 
y»fc-9— /<BJ8U?atf*»ia»t*«BLs WEBB 
/^B<fcy»7c*** hfiJEB£* J fc£:lc*** H 
B»J?«BBLT*iJ«HB©B*tt*^iy^U *B 
BOBBtettBEBB?— /t*BfcBE**v hffi*&51 

mm** 

BE*5-r7 , >hB«tf* BE*** h«J*WWcft*> 
5f^7hSMfIfSi, B 1 ©StffeWBSfP^&i: 
BBBU BE*** h«J#BS#l6l*. BuEBBE-y— 
/ S^BJ: y BE** 'V h *»T«BT * t £ ic* UB B 
B=£B3LT. BEBrT*J— /^BK*ftS*«3*U 
BEBB/ \* -> a ^Bli , BEBBEBBBJ: U A * > 
2f«S>J Ha LT, =L— y t BSE#IHlctJt''7"linB©A 
\y -> aJUB^aE LT^fc^S/ \-y SsaBBBBRE?- 
M#Bte2£y, ^fflBB^IiIlcfc^TliBE*** h« 
#«S¥B«fcyBfc*JBEBk*BT» n -kS©A7 

ttttWQBOfc£y\ BEB 1 ©BBBBSfflBBtt. 
BEBB' \v>i #B<£ y » fcBB/ \ * -> aBiiBEB 



pj+t-y ^S<fc y »fcSJft£©BBttBSSlBB*ff & 
o T£ JH©BilBS/ \ * -> a BfcBEBB+J— / t*BU: 

ay. 

BEBRl-y— A^Btfs iJEf^-'y h*!lBSSBBlcf« 
to**** hM§rB3#S<t. B2CDSLB^fiE^lftRtj : 
B 2 OBfteWBBfP^B £*BBU MIBf *y hlf 
BS?Bli> S5fBf*'> KBSMyB^BcfcyBfeWBtt 
BtfBBBBT BBKBESE^BE^BJ: U Bfc** 

•v hBsy^Btf-y— jm%&tmz?^'(T> h#is<t 

yBfcjpJBHBfcfrS*** K3PJBBB«rSBU B15 
BBBJ? tfmTBESE"9— y^SJ fcliB 2 ©BB-y 
-/ t*Bfc» LTiM y . BEBE+t-/ ^*B$ fcliBE 
B20BB-9— M^®«fcyBE*** hffiUfeiiJCA^jI* 

n&^ofciyi^v BuE^^-ry^ h*««fcyBfefiJB 

tfc^-r^.t.htlc, ^yhB»m ^-/BWJ^Btf 

By * mmn^'sm lt. beb 2 ©Bor+t-/^a <t 

fi'^U ^8a0inli:(iwaBl 2 ©BRpy-M* 
SlEBE^y h*B»BB*a6ys BEB2©SLB^B 
SLB^fiELTBE'?5l'7'>h^lgSO : BE 

n2(D$m<*)mm%}^mc'&v. beb 2 ©sMtfiMBB 

fi]^Bli. BEB 2 £0iL«£G)6#B J: U BfcSJSt WE 

•^^-ryvi-^iScfcy BfcBaBB/ \ *> a B <t ob b 

WBBfflBB^fiS: ^ T^B^ \ v -> afl^U^ L. BE 
B2CD/\^->a#B^ BEB2©Bftee«)BS»^©J; 
y ^f/c^B/ \ ■> > afillC/ \ •> -> i-S5*JS LT^ffc-^ 
^S/\>yv'a<I^ifl^Ls BEB2©BE?4*rttlBB 
tt, BE^v h«B#BJ:yBfc^y hB8'J?, ^ 
-yBffiU^BtffliySIBiaB* BEB2©B«WBa» 
^® <fc y ?#fcBB/ \ y 5/aB. BEBrTHBBB J: »J » 
fcB»JBBK»-3< BlflcBBIJ--/^ 
*B«srB?rBB9J?fl!)aeu:BE?*f»fML» BE 
hi:LTBE^5-<7 7 >h#Slt3M^Jl<!:^S!! 
i:r*»BB2 2lcEB©BE5/Xxi*o 
[ff5Ril2 5] BKf^f h*BfiT*BE-y— /<B 
B<h. BIEf^f K03PUB*BRlT*BRr-9-- A*B 

BEBE-y— /^StBSEfty hBBBU BE 
IgFr+t-z^iekBE^^'y h©3PJBBRT*BBr*^ 
^^T^y h^lSii^B^^BE^X^AcDBE^liifc 

igE+t-A^lgfrS^^fZVK^l-. BE-y- 

fa@a<?n?$5Baft7 h*B«u ^^-r/v 

K^Blis BEBE^^-v h*BRpy-/f#«teiSLT 
^JfflBRl^^to^ BRr-y-/^B©B^1f?805B3<^>nf 

B^k (kt±nJ-XT©iEBB) T**<h^, BIEBBB 
BlcBEmBOTRTBBB* n - k BttL^BBBB« 
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1(1E«3MMB£LT«5*U BrT9— witZt£ 

mt. BSE^^y ho*yffl£B^-t3BRr+*--M'#is 

/^IftKBE^y-J' KOSJEBrTSW**** 
^-TT'V h^lfti^^^Biii/X^ACOBSE^l-fc 

BE^-^SMSfrS^-'l'^Vr-^IS^ BEtt-/^ 

pTiSSIll^n (n(iiEBtt) 0MLfc!B$nHi*£fc, 
*&0iStJbSnT££BE5 1 'i7--y hfcflfrU V^^T^ 
h?©l±> WEBE*** h^BRj+t-Af^K^LT 
fUfflBRl^iR^ BRl+t- /^IS£Dam1f«©Sa<lc« 
LTx ^-TT'Vr-SM&tes BufBBU^^-y hroffiffllD 
&#k (klinJ-XTOIEgSO BCSH*BfEtS 
«(ctflEm*©*Rra82MI* n - k SfifiLfcSIII^m^ 
iiuE&^1*ifi.bLT£^U BRl+t-/\*^|gli. sufiBffi 
^tffSlCHUiBF^^^pIi^SIW* 1 0*U *4)-;«HS 

miBufa^'tisffliiro-a^Msij-r^.ti^ic, usee 

E*$-f Mc-£$ft*SH-&W«£3&SB»ffi*»KffiIEffi 
^O^eJiSKStll* n - k SSE Lfc-SHUeSlcSfrt ^> ' 
£*13*£T*BE*;S. 
[ft 5R« 2 7 ] m&BSV—i Wfttf, BE^ y h 
^S5t?"r^^-7'T7 7 > h^&KSLi&^LTBEtl^tS 
WSKRU ^^Vr-SMSl*. a— y'BSEtffBiiBj 

fB^ia^coa^icBuiBmsroTRiffi-siii^ n + 1 eel 
f=5S3*E££iiuEBE«^«?B.tLT«^u be-*- 

ASMSlis «J#LTt^3.— •fBE1t«£t!lESL8£<D 

gsgicsuiBmsco^Rrasgiji* n + 1 ihelt. torn. 

IW6E£WEBE«wflHi£©-a*EB*-*£. buIB 

ii-+fBijEW«iHijiBasfc<b©a^icfuiams©^Ria5 

^flWBS^fcBBE^^-y h*fHrT*C 
if Sell 2 5$fctt2 6 £E«©BE^St, 
[fS*JS2 8] ||EBB»-/Wlft BHft7 h 
5-g^r^'5'5-l'7'> h^SlciL»*^LTBIKI^if 
««B«U *5-r7'>r>*«U\ n—tfEEtiNHtiy 

fctflDt^'rT'V h^Sft^fiEL/cBlifflgLSf.!:^ 
tt«BS«*Btt»*t&EBE»5HWB£ LTS5r U 
i?Itf-/\*?Sli> «J$LT^*n--tfBEtff8<!:Huia 
a*t*ffl^TttEBEaS1Mlfi*6l9EBIiEfflSL»* 
£*U «JEBEfflaJ8t*itESWtMBiLT» Ctifc 
RfrSO^RfiSaWS n (rUiEEE) EE L/cEEEn" 

imi**«jBE^^'y f-^^-r^dt^SKi-r^w 

$12 5 3: fctt 2 6 ICEEOBE*^ 



[ft^II 2 9 ] 1^524 ©l^-fftAHcEEW 

BE->XxATH^*n^BE73>i*/cl±lf^2 5fr 
6 2 S^rnfcHcEecDEE^iWfc&^n-^A 

[000 1] 

6^-/\*^KlC7"?-trX-r^iI<t©S^tt* ! l ! 'J»r-r« 1 
yl/-t-r>^->^£0BE^aii : BE->7.5 1 Atc|i?IL> ^ 

So 

[0002] 

UTS h&WfrZmmZtlZV-J* • ^T'TT'V 

♦tPg^Wr^Ch^SSBU TiE£7*£-feXiM7S*>n 
ftl-'.fcdUi-rscditfSET-fc*., COT'^-feXtfE* 

Sfci6, fiJ{Itt£ft±*tffc^>^U+^>*>SJ<9B 
E^Etff !IE * ft-S cfc 5 K & o TJRfc d tf> <fc 3 
^;l/-9-0*>li©BE*aiLTttx 0>J*.tf* Ke r 
b e r o sBE->Xx/*Tm->6tt£TTP (Trusted 
Third-party Protocol) &— EKfflSflTl^o 

[0003] ut, ftEw^v^u+Mv^vStDBE 
ysmz-o^T^m^^Liiti^mm-r^ 023^ 

HT'ftUs EI2 4U7n r-aiU^-r^p haibf— 
VXEITfe^c 0 2 3&tfE]2 4lCfcU7\ 811*3.— tf 
-r>^7i-7.*J#0^5'r7 7 >r-#IS. &2&ZL— tCB 
E*fTft3BE-9— /^Sx 83li7 7 ^-tr7.)ftPS^jKfTL 
TfUfflBRTSfrfc 5BRI+J— 

[0 0 0 4] <75'T7'>h^81i:BE^- /^#K82i: 
0) a-+f BE^IiItcfc^Tli, a-tf -f 7 x-X% 
^LTA73*nri:a— tr'tasy^U I Dt9-/«»JfS 

I D<h^BE^1fffi<!:L.T<5:t>^:ofi:BES5RAuthen 
ticate Request801 7 -f 7*> r-^ISSIft^BE+^-M" 
*^82tci36 y . 21 nic« LBEtt-/ ^#«82tf / U7- 

feofcBEtSSAuthorize RequestSOZ^BE^-iry hTi 
cket803 <!:<!: ^ izM V 

[0 0 0 5] *61C. O^'iT-y h*S81<tSRl-y— 
*E83t©*yfflBRl*li(=*Jt''T«:, ^^-TT'V h^lft 
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81*Rz -y > 3V8SK TBt*fb* nffci— V U I 

fcBRJS3<Authorize Request804£BII ; ? : ^ , y hTicket 
805 L £ 1 ICBrT-9— A*S83l=3S U » £ *UC# LI2fJ 
•9" — / ^#18831* BSESSRAu t ho r i ze Reques 1 804 K £ 
«a*1«B£BliE*$-y hTicket805<!:£&§iELT. 
•bB&nii'BRjilfflResu I t806£& U jETt^T-fe^o 
[0 0 0 6] W±<D<fc3£7n Y-ZM^iz—^yTJeWO 

J 5-«D«06iro^TI2l2 S^BgL^tf'eiMB^r^o 0 2 

^■TSISI^P'y'i'iaT^^o H2 5lcfc^Tts 811*3 
— tr-f>*7x-X*l#0^5-fy'Vh*S:s 821*3- 

BSEfc^ft 5gU+t- ' 83t±7'^ -t* 
Br LTf iJE!i2pJ : &fT& 5 12 W- / 

[0 0 0 7] ^^-<7> b3M681t*. x-^OSSte* 
?T&5Sn OS§fs#lft311<!:, 3-+f*>S©A73**# 
*A73#IS811<!:> gftLfc-fe-y->aVil£«^-f*-fc 
•y->3>8«-5f^l8812«b. gflLTtBHE^ y r-£« 

!EKj£CT^*iSJRT*ffi3I&JR?8:315<!^ 
fc-ti -> a >a^«Sffi«tclB« "T *&ffilB«#&316 
<t. B$£iJ£l+BST£fiEfEf+B$#®813<!^ -fe-v->3>S 

[0 0 0 8] tt. BBE-9— M"#lft82l*. 9— 5*<7>iM§ 
{I*fTfc-5Sg2tf>33Sg{I^«321<b, PSSUfcttBSTSB 

«SftfcttHtiHM8t*«323£. a— *BIiE»S*fc 
Bt-^a«-^fiE-r^-b'V->3>a^^S821i:^ /U7 
- KSffl^T* v "> 3 yft&Wfcit? s-fe -> 3 
^S822<b. Hz-y^a^gt^ffl^TBIiE^y h^-Bg 
^b-T^-tr-y KBg^S823i:zb^e.«fiE*n5o 
[0 0 0 9] Sfc. SrI-9— JK^mHt. x-*<7)j£§ 

<f*fT&-5Sg3<z)&g<f§M&33i<!:, i$??j*ftBrrsB 

^#S831<t. BSE^-y hWtfStrttWJEfcff&'J^ 
•y hW5a ! t ! 'JS^IS832<!:, BSEsS*fiEE11NB*«^fbT 

h © § i: BiiE **fiE « 1f $B 4) P*3 S <b * JtR Bte T * 12 
^BS^#l&835<hfr6«lJ5£*ft*= 
[0 0 10] J-X±(DJ:5lC«fiE?nfc^Jt5<D-»^;b+t 

si 2 e^^L^ft^eitt^-r^o s*\ f?^-47~> h# 

SSHCfc^T, 3-+fg#£;f,T3-+ftSSS'J^U I Di 

co/ixr?- K p w •fcfijfflB^iS^ttS^^-AMS'J? 

S I Di:6 , !a—tfA^)800i:LTA73#lg811ltA7lS'n 
5 (ST310K ST8101) . A7D#IS811l*. 



3.— ?A±l800£— B»«8rS££t»fctf->«ffi!]?310 

^Ig3i4t±, +t- /TOJ^ioitcfcriSTSBtiEf^'y h 

f-^^iLT (st 31 0 2) \ «istemaaa]3io2 

fciaSSfl^SSISKjM*,, »8»R#«315U:» ttSRtfi 

ii«i8ioi^BjiBA73*S8incsi y , * y «^r«i^^ 

& fiJffll2Rl¥III«Stl!)3ifll8102^BuIB^'ir-v r-«&^£6 
314, &«iBfI3Mg316»tmB.8tt$BB^#l&814l;:&* 
(ST 3 1 0 3) o 

[0 0 1 1 ] miBA2>*«811U\ 3— tfBEei!)jl«8 
lOltf-^TlSttSi:. — BS«JtLfca-+fA7J800fre>3X 
til Lfc, 3— tfMSU? t+l— /TOW? <h^«i81035:m 1 
CDjSg'(i#©311 LTBIiEg5RAuthent i cate Reques 
t801<tLTI2liE+f-/^IS82lc2l»J (ST8 10 2) . 
a— tTMffl!J?8104tlI^flHIB»#«814lca6 U % / U 
■7- K8105*-by->a VS«^IB812lc5S^c 

[0 0 12] |2liE+J--/^S82lCfc^Tl*. sgBES^Au 
thent i cate Request801 «m 2 cDiM§fi#IS321 T§fi* 
KU*hfca--9WJ?820ltfBE1WB«f«#«32 
SRtf^^-V hBg^l&823lcS6n, +>— /^»S'J?8202 
fff-frv hB%^m23lcM<=>ftZ> (ST8 2 0 1) o 
BSEtt$S«ai#S323l±. 3-+fltSiJ : f-8201 tCT^fE-T ^ 
/^■7-K***LT (ST8 2 0 2) . ^'J©lf^ 

9- K8203^-t -y -> 3 >f8B§-^#-S822lc2l t> , 
«ISieM3iffl8204*-b -y -> 3 >S^fi£*-S82lSrJ : -tr -y 
-> 3 >SBg^^ie822lcS^) (ST8203) „ t'r> 

3 vsi£fi£#882ii3% «aiMg«aai8204tf*y *a%r 

*rtfclc5 >-Sr/xfe-b -y > 3 >S8205^^LT 
-fe -y -> 3 >SBi^^©822SrJ : 5 1 '7- -y hW ^#S8231CjM 
^ (ST8 2 04) . -tr-y->3>SBg^#IS822t±. tt 
^3iSmiitD8204# i: S y -b -y -> a >S8205 

?/U7- F8203«:ffl^TBt^-(bLfcBg^-fb-fe-y ->3 V 
S82065-^L (ST8 20 5) . Cin«:3l2<D3M§<I 
^S321 LTBlBSSAuthent i cate Response802 £ 
LZt : ?'(7>Y^fSi8MZ&Z> (ST8 2 0 7) „ BU 
tt^S322l±, SESBMUIttfttLTSV. SlffiBSfflK 
S-^X^-f Z»X^>73212^f^7 hBt^lS823lett 
tgLTl^. ^^-y KBg^l6823li, F*g35lc«^L^ 
-/^!«SUT-8202tC»f5Lfct»— /^ilS^ffil^Ts 3- 
+f!K]g'J?8201 c: ^MSO?8202 <b^'TiUX^>7 p 3212 
£ -fe -y -> 3 >S8205 1 5-Bg^-fb LfcBliE^'ir -y h * 
82075^BEL (ST820 2. ST820 6) s Z.Wk 
% 2 £DS§ffi^lft321^^ LTBliE^^ -y KTi cket803<t 
LT-77-<7'>r-^8UCjM^ (ST8 2 0 7) „ 
[0 0 1 3] •^5'T7 7 >r-#S81lcfc^Tli> BBEI5S 
Authenticate Response802(±m 1 CDiMSfl^esil^-^ 
LTPg^b-t -y -> a >S8106^: LT-tz -y -> a 
a812^5M6^ BSE^'y hTicket803tiSl ^jMS^I 
^©311^/rLTBH^^-y hr- 5*8108<h LTbusB? 1 
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TV h«J##S314tCjM6tX* (ST8 1 0 3) o HUE 
VmS^mWt.m&.J-Tv Y=r-< >8108*-9— 
/«ffliJ?31014:*fJBr2H*T«l*r* (ST 3 1 1 2) . 
M y -> 3 V8tt^#lg8i2(i. Bg^b-fe y > a >88106 
fcKX^-KSIOS^fll^TII^b-r* (ST 8 1 0 
4) „ fie-^T, F&XttfttcmfelZO) 
d+IE Lt^-tr y -> 3 >m*'&Z> Z- 1 T*# &o -b y -> 3 V 
g«^-#-IS812T1f Stifc-b v -> 3 >B81(mil£35f5ffi 

[0 0 14] «SffilB1t^lS316l±. -fe^->3VS8107^ 
8WSBIC5E1I LTP/rS© T'^-b X ©a^S? £ 1 05T 

(ST8 1 0 5) . mmmejmfcmwimmmtfs-zz 

nfcH^lC IBttl Lfcb y > 3 >S81O9^!iE0^1f «BB^ 
#«814fc3aS*„ SEE!8ltBS#S813li. JlSB$$iJ^|+Bt L 
Tfcy> 3H£B«!Hc»-3< •XA7.'Jf>^8110^SEB^1f 
$BBg^K814l;:tt*gLT^£o BEflS1flBB»*«814 
fis fUJBBTO«S»il«81Q2tf#a.SnS£s a-+f 
lt!S'J : ?8104i: £ -T >78110<t £b y -> 3 >g8109 
5-fflUTBg^-(bLfcigK^ii0^1tlB8111€-^fi£L (S 
T8 10 6) . ilft*S1 05Sgfi3MS31l£:J>LTB 
qJSSRAuthor i ze Request804t LTBrJ+*-^#I&83U: 

(ST8 107) „ IliJiB^y h«J#?IS314tt, 
fiJSBRl*l«Elia«8l02#4jl6n*i:, +t- 
?3l0Uc*tfc?Z>U%Ltc&tI : F'r'y hx-$8ll2£, 
t£l OXS&m^mnZ-rrLTmm^Tv Hicket805<h 
LTligpr+t-/^®83^jM^ (ST 8 1 0 7) „ 
[0 0 1 5] |gpr+J"-/^S83lcj5^Tlis ISrIS3<Au 
thor i ze Request804tiS 3 ©iMS«*®331 £fl"LTl£ 
UESS3*IiEfEttSB8308<h LTiI^«f8*#^S833lcS8 
*U BliE^y hTicket8O5liSI3 05&gll§M6:331£:rt- 
LTBliE^y h 7 s — 5^8301 tLW7 K«*^S83 
llcSStl* (ST8 30 1) o T^y h£^IS:831 
li> BEE^y hx-28301£F*3g|U;:«i#L./cg-'*-M' 
ttil8£fS^T«^<bLT. WSftfca— MBRITOB 
<h^-MtffiSy?8303<h£^A;*$>:/8304££^>ry h 
WaM!£^K832KjM »J » 42 v 5/ 3 >88305£fiEBJl1t $B 
«^^®8331cjMS (S T 8 3 0 2) „ BRT!tB$§Mg332 
l±. ^SB#SiJ^i+B$LTfcyv 3^SB$S"Jt*$B8306^^'7- 
y h 5^JJ£*^2&tf firait«*JWJJ£*«834fctt 
$SLT^5. f^ry h*»W**S832tts /t*BJ 
?8303£fc»fc^LfcStf-'TOU?£©— 
fjft -5 <t £ *>fc % * •< /xT. ? V ^8304 1 IlSBf SiJtf ?883 
O6<h05M#ffi£05^»}8P105eHF , 3"e s a53£ £*?-x y 

* LT, ^Tft*>BT*S«^fca-1«HSi.ffB302*? 
fry ha— tf*9J?8307£ LTlSRrffi^S835^2l* 

(ST3306, ST3307) „ SEBJltS?8«^® 
833ti, fgSE»*SE^1f Ifi8308£-b y -> 3 >®830S^ffl 
L^dWtLT, »Snfca--»f«ffi!l?8309£*-rAX 

* >^io£ *ffiBnm«wjje*«834icas* ( s t 

8 303) „ BE3IWraB11HI«:^5-r7»Vh*«7?-b 



y>'3>a«-^^TBg^<b*nT^*©T% <7^-<T> 
h *ST*IE Ll^-b y -> 3 yfttfffli/* S tifcW&U:©*^ 
E E TIE L^a— tf MM? <b * i»X * > 7<t *M# 6 ti 
*o EW11I««»PJ*#«834I4, z-rux2>y&3io 
i3Kffi^S!l1*«8306<!:ODS« i mS©B$BgS<DlSHrtTS 

09*SEB^a-+niS!J-?831 1 <h LTBRlfiS'&#e835(CjSS 
£ (ST830 4. ST830 5) . BrTSH"&#®835 

tts h a-+fligiJ?8307 < tiiEB^a-+fKSU?83i 1 
£05— S#U£**TfcC (ST8 3 0 6) » JITfcfcfcS 
«BrB1*»312*» m3 05jM§{i^©331^^LTlSpI 
jlMResult806£LT'?^-r7'> h#®81lcaSy (ST 
8 3 07, ST 3 3 1 7) % ^3-(T> h#K81fc*5l/» 
TfffiJnS (ST 3 118). E05£3\ -fW!lJ£tf 
M£&ofcif^ a— tfB9J?£*-f UX*>Zf£1fiiE 
L<i#6tiT33yx Ctili^^'TT'Vh^lftTIELf-b 

•y -> 3 >m&m ^ s nfc z. t l t ts y . cintiiE l 

LV\°xr7- K*SA7D**ifcC<b*»*T505T\ a-+f 
[0 0 16] 

ffiLTfcy. 4ttcfiJffiBRl«iS057bO : lc^5'r7'> hffiij 
TBg^fflS^^a 5 j^^fc 5 ❖ 5 -T T > h «tf 

05-(S^5IKTfe^*-a-l^±, HfflWaffiSBfP^ITfUfflB 

Risas^^Ta ^ z. t ^iHT$ ^ «b 5 na^ * lt^ 

fee 

[0 0 17] STc. ±IE«3R05*fi£THi. 1 O05BiiE^ 

$-y h 05ffifflina^*'jpfi LTfce-r^sbKaps^is^Tu^ 

<bLTt>, «^.*n-ric^fcoTL^-55I^146^S^<b 
t^Bafe*LTL^7co 
[0 0 18] C 3 L7c^3R05lSa^K53i-r^ 

<fc05T-fcy* -?5-<7 7 > hffiiJT05BSHtiaS*<&Si:-a: 
f\ H-B5aSfife7J05i£t>SI«TfeoTt.SlfflWajfi31B$ 
IHTWfflBRHWHrfta A^T* . BliE^^ y h 05 

[0 0 19] 

[KH*#;*-r *fc4605^s] ci05Ba^«>*-r?.fc» 

*»E]«tfn (nttiESia) T 
JB5^Sf^7h^U Zin^LTfUfflBRl^AR 

LBEBBE^^y I- fcBdLTSJflfflRrrSBRTtf— /t 
^S<bi6tt. lulBBEE^y-y htt, ^y K«8!l?tBH 

«wb £*3aiaa t «s a £ t»— y «gy? <t *«*b 
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'J , mtmUI-'r v h ©«ffl k ( k (i n 
IBF/T^^Rl&ailf^ n - k 0SfiLfct©7-*^Sl 

[0020] cnicj:y. ^^y^JT^Pt^aaJi 

y s^BiiE^RtfBiiE-yx t 1 um% e n* 0 
[0021] ^2ic msmiv-j^mi. a-+fsg 

m^^sjmmm^ 1 iaw±as Lf=t y . HufSB 

[0 0 2 2] CtlCJ:'J> ±IBS8bmic}jD^.T. n.-"tf|g 

jfc&tfBliE-yX^ AjtRi en*. 

[0 0 2 3] S31C. ItEBBEV- =L-+ft2 
B9MK£l^TSLM*£l8U im^^LT^^'TT'V' 

h^S^ISiillS^fiSIB^^-r^troTSy. huIBBSE 

(CBUlBp/rSO^RjjSKRJI* 1 &yL±MLtc*>0) t<? ^ 4 

tt»T*y, itlBtBSflMlti. MIBi£EEji^«?Bfre>3e 
H*ft*l9IBBIiEfflSL«T**Ci*W«i: LTC^o 
[0 0 2 4] JinicJ:y, ±.%&hWk\.mXT. BH^ 

*7c46BliE^ v h 6 n— V RfEflHItf ft 38* tii rJ 

[0025] m4ic, BuiBffiSo^orj&TSJ** 5 — 

[0 0 2 6] cft(cJ:»j\ ±ea&*fcttia.T» Vz>-<? 
y h fljtfft JMQ«JE*J ©ttLMBIl? * o T fc * Jl « * » 

aBsmTjpjfflBRr«ffl*ffa a £ -y y •?> 

+M y* yS^BEET^&tfBBE v-7. 5 1 AjbMf e ti«„ 
[0 0 2 7] 3151;:. fiulBiSil^^-y htt9Hr*ttBI? 

rniBBRT-y— siebrit* title 

^MS'J^tSgiiE^t^Mfr-r^t^T^y, fifllBES'o 
1S$8t*> MIB»*1fWcWEm:E©*W3fr*ll* n - k 
0BSL7ct>©TM»T**U BufBW&ESSai. n-kTf 

[0 0 2 8] CtlfC^y, ±fB3»Sfcl»l*.T. IgiiE^^ 



E»T*n*/i:i6Wa*iJ^U:fcnt**S«]WRS€r<fcyS<S 

y ^U-y-Y >S<DBII?d>* Stf BH->X ^A tm 8 

[0 0 2 9] m6(C mZ<7^^T> h3M&«\ buIBB 
H^'J-y h<7)^ffl0»^ , gSLTfcy. WEBB**'* 

k <t <t tic en*** LT^jffiBRi^^^t.cDT* y . 

SulBBRl-y— /^«*«H»«|jt» WEBBE*** K0« 

fflH»*«ar*BSE^->-y hgs^s^fiS^Tfcy, 

fuEBIiE+*— BERBER* h*«fTT*£ 
ititcrniBBBE^y hBS^JStettEBff*-*-:' htf> 
«frfi«*»S*U tOIEBRT-y— /^*a»4s SUIBBSEf 1 
<ry KflMia^rBW-TtfllBBIiE?** h*3#«KtaE 

a#««fcy*afta»*aitfc«$ictt*jfflBRrLft^c 

[00 3 0] Cti(<:«fey, ±IBS&*tcliDilT. BII^^ 

U^SO : BliE>'X7 ; ^!b^# 

[003 1] $7C m^^^T'y^^mt. SUIBB 
liE^^-y hO#ffl!sl^«aLTfey. HlfBSfiE^^y 

h 1 1 1 ic <m%fjk LTfmm*jzmb2>*>(DT*& y , 

SulBBRlt>— A^igfcfcSfii;^ BuiBBII-y— /t^S 
li> IJIBBBE^y h^^T-r^-tittc^aE^IB 
II U IJEBRl-y— BulBISSE^^y h«-M»r 
T*££ , fcl::WfflM!*E1lU BuiBBSE^^y hcDJi 
^*SWT«fflaBBE^^ h ©R^MBU^/ftST IflK 

BiiE-y- / fc» suiBBRi-y— / buibbii^ 

<rv h©aS^SS^L. SuiBBIiEtt— M^IB^fcteHuIB 

BRF-y-M'^© «fc y «ifeiiH]*gitfca-&(ct** mwz 

Lte^ZL £*<&'<&£ LZ^Z* 

[00 3 2] CtltC<fcy> ±IBS8!imtnfiP^T. BSE^-ir 
•v h^Mtr*n?.->X^AlcfcO^Tx BliE^^y h<Df'J 

m^nmmT^^tb i ismoeay y-x* <fc y 
ft<T-**s -»^;u-y-o*>fi©Bii*aatfBiTE 

[0 0 3 3] 

[0034] (mi (Dmmcomm m 1 ommmnm 

T.^Jto^^-TT'y h?®1 a.-+f|gSE^^ftaB 
EE-y-/<#IS2«»:, ©T'-J'-trT.ltPfi 
^WK LTf 'JEBRj£?Tft 5Bpf-y-/^#S 3 t^SfiK 

et^tSSSS*. X^-K7*>ft<i:j!>MI/BT-5\ B 
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H-tf-Ma«4£ifl»B?*^ BrT+>— M*3Mft3 

[0 0 3 5] ^7-f7'/h?i1 fcBRT*- /t#«3£ 

r l tiifli* » k v — y n t ^ & wwt 

[0036] ^^'TT'Vh^lftUi. fUffllSpI^lllTffl 

y» be?- /t¥»2& ©«Bts«4ic^pi2sgi*f * 

nisi (ntis81iE^'!r > y h<7)*Sftlsl») 

£EET£o BBE^ttBE^y KD3£2 , A,f»±.»:f^T# 

[0 0 3 7] ?5-T7'>h3M$1 £BRltJ— /*#«3£ 
1f $8 4 ic^F RiaeSIll f * n - k El ( k tiBII^ -y h- © 

3iHjfflBpr*iiT©flWia») ff*ofcBJii*«isiii«6 
ib 6 (t»siw« 4 =& n 6 s^mH#icii§+n-r * £ 

T*%^/i:A6v 2l©jf^1««6^J;y«SffitBIB4^Hl^ 

[0 0 3 8] <7^-fT> h^SI £©*I^t5$B6 

«#LTVfcttliE7-*'y h7 tttlcBRl-y— 
ig3lc£y. CtilcWLBRT-y— M?S3l±. SE** 
h 7A^trlSli?«7)«SE<!:. ^mSIB 6 1^5125-5131 
f * k o fc«JII#BIiE*$- y V 7 tf^trgg^lt $8 

[0 0 3 9] CtD^BtCfcU. ^7-<7V(-#«1B8 
BtiNB 4 £B pJ+f-/ t*f & 3 ^^to/cmH^lcB^ft^-T C 

[0 04 0] C<D<fc-5tC, *HBfe<7>ffJ*H<DBliE->XT--k 
WttlslKtfn (nlilEBB) -paSSE*** h£ 
S^U d*i^LTjpJ«BRl^5t<«>^^5-<7'>h^ 
Si:. Cft^SttTlI^ISfBfc^LtyfaBliE^'7-';' h 
t!B$LTWSBRrr*BRl-9— /^«t**«LT^ 

[004 1] tulBigii^^-y hfctt. B*Hia©flSlc» 

h«gy?v masB. BffBfts -9— 



#a^# ft*T*»wt«fcmsfl>*Rras3i»* n ess 

©<£JSl2]»#k (MinJiTFCIESB) S3 

EttWWii=Hf*fl>wieaiw« n - k taste Lfenwi? 

[0 0 4 2] C-5Lfc«tfiKlC«fcU, ^-TT'VHWT© 

>§a©BSE&^stfBSE -> 7. 5 1 /* e 

[0043] (R2 CDSIfifi^mHI) B 2 ©SBSraffiCDB 
22lcaLTBBE«w1WB*^LTBE^^v h«»T 

So 

[0 0 4 4] £ ©BUS' 7. 7 1 .Mi. 02lC^-r«fc-5lt> 

-■9 t BSE : &?T*5BSE-9--^#ai2i:, O^^TS 
jan©7'^-bX*B* ! PJKLT*iJfflBRl*Sa:-5BRl-*t 
-M*ft3tfC5«»J» <7^7 7 >h#ISi11<h|glIE+>-- 

/ wn 2&tfB rt-9— / 3 1 (DffiitGms ttitum 

Mi5Z.<y h?— »u:£U&M;!rftTii«. coigRl+t- 
y^«3W:BlflDB*»« (HD tW— Tasy, * 
fc, BEEt»— /WB1»5>7-f 7»> h¥K11(c&!JX 

*«3ic3as«-r*a^««[atfBRr^*y *6tcB 
BRTififfl8ic-pt^Tt>. &-\<Dnmm (hd tn— 

[0 0 4 5] c:0DBSE->Xt : Z*<O7^-<7 7 > h^lftlli 

BliE-y— A#Si2<hli> a— tf-<>^7i-7s*5>LT 
A^^nfcM'X^- KPWtBHIt- /^#Bl2«tyi§/£ 

a»R £©»Eu:*:Rraiaiw f * 1 sffftof=is***B 

BHNB14& LTftfTio ^rTSBBB f KSrte^*^ 

[0 0 4 6] •75'T7 7 >h^lS11<!:lgii H t-/^K12t 

Ctl*^LT-7 : 7-<y'>h*®11lcBliaS 
1fffi^S^-rSo ^^'TT'Vh^Sini. A°X7-KP 
W t BE-9— / ^Sl2«t y ?#/b£LSSt R <t <D»BlE^RliB 
3Wf«1Bffft'3 T*iSE«fBl4^Bai U =1 ©«sa51f 
B14tC*6lC^RTiaBBf *nS (ji*n+1lHl, n(i 
HEf*-> ffft-3fctt**BBEBSM1l« 
13<h LTBsiE-y--/\"#Kl2lCjJIS 0 
[0 0 4 7] inWU BBE-9--/^«12(*» BUS 
SHWI13fr SIMWWBMtf-a LTt^S C t ^5tB"r S 
ttWMH4(C7RTie9IB f *niaffa:ofcie»*IH 
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fcjSUis-r. v^^ts h#snt±, cin^f'jffligRi^ 

[0 0 4 8] $fc, 9^'(T>httV\£BW-/& 

S3 &4>fijBBB¥Bic£^Tii« Qz>-<Ty h#sn 

tflHMff 814£?BSBB f * n - k m (kttBSE?-*- 
•j> K©SPJfflfB^I#»BT©ffifflia») ^n-otcmsk^mm 

mm 6 £ LTfflf*. *rtbbb f 3t»**ft^Rra 
tt£B*©*satf5>$ri*tt*fco7v*By, £© 
aaH«i6i4iBmiHii4*«s*^ji=#ict*imr* 

[0 0 4 9] <7^-(yy h#®11l±x C©S^1tSB6 

B 3 KB V . C tlfcB LB / 3 liBE** >y 
h 7 #-&t>BEE?©fcEE£:* 6 lc*pJi23tB f 

* k Sfr ^> fcBBffBtt** y h 7 #SfcB£fllBl= 
— ftr£C£©BB£*ft&oT« lEMJtBaMUiBRl 

[0 0 5 0] CO^jSlCfctK ^5-r3*>K*«1U*» 
®tt?814^y <X7- K P WSBrI-9— /^fft 3 «r$46fc 

B LT*UfflBRT*»* C 
[005 1] ZlcDi-pic, *§ISS©»!HroBiiE->X^A 

#B^g3<-r*o E©£»©S««Bi:LT» a— tfBBE 

it«fc&»£©jWSfcmje©*WBB* 1 e»-x±bsl 
fcfeoD^fflL, sbbctW «i lt> coaemaic 
»b©*rtb*b* n BBLfctctfams-ft*. 

[0 0 5 2] C-pLfcJWfiEluiU, B 1 ©HB£fl5J8©?5b 
Bl=ttljS.T, a— yBE#Bfca3i/»Tti*5-r7*:/ h« 
T'ODBg^jflS^^FSTftyx Sfc BSE«/T*1tB©-3t* 
BS t BwfllBWBBtta <t ttttafl;?* > > ^ u 

[005 3] m 3 ©£B©&B) B 3 <D£W£ffi<DB 
liEvX^ATtis E13tc^-r<fc5lC ?5-f7*VH^B 
2KE «toTSB*nfcBEBSUtt<j s BBHHa24i LT-7 
5^7»> t.^a21tBE1r-A*B22i«)MTl«tffn 

[0 0 5 4] C ©->;*. ^AT'ti* 3.— +fBBE*lffllCi>f» 
T. BO"*- /t*S22#SJ![*£«U un^LT7 
5 -f 7 > h #®21 lcBiIffi^WB*B3?-r So <7 5 -r 7> 
> l-¥»2iti % /tX7- KPWiBBE-9— /t¥B22J:»J 



BfeSAR &4>BB£7B£BB f * 1 BfffcofcBJIl 
£*^'CT> h*S21tfiB»Blc*BLfcttBflWB24t 
<0»HftWB3BPB»*BSEaS««23t LTBBE*- /* 
^fg22lCjM3>o l2l3lcfct^T> IB^ r @J ttSMteWBS 
fQ (EX OR) jRBS^LTf'Sc 

[0 0 5 5] CtlKBU BSE+f- /t¥tt22& BUS 
a*1tB23 KPWtSLRRt^SiBWLTIW 
tt$B25^-3?«>?.o ^LT. C©ajB1t«25^^Rrj»3i» 

f*nEB?*l\ f ©BBBB*B£BB£ U Cftlc 
BBE?*f«niLfeBH^'*-'y l-5^7-<7> h^S21 
icByiETo •77'T7'Vh#S2Hi, cnSfJBBRT* 

[0 0 5 6] t> La- Vfl«T3E*B=#TBMi 

5M1IB23#»iyfcf*Snf;:«6»©J££Tn«» ^7<7> 
h#S21TBSE5 l ^ t y h 5 fcA^f^E ttfT^Ttx 
+f— I WI2fKS/T;fli*B23 6 n°X «7 - F P W £: SLifc R t 

zm^r&n l fcttenwusw:* 5 -r t > h *«2i k a 

SMrS*t\. *o>tzisb, B«©*"JfflBRl#WU:*3^T* 
[0 0 5 7] ^5Y7»Vh#S21i:BRriT-/^«3t 

«$g24ic^ pIjS»j»» f^n-kS ( k tiBSE** 'yt*© 
f"JfflBRT*BTflDfleffllH|») fj4orclS»*a3HWB6 

B 6 liifetSffiflt ?B24^«] 6 4f BH*lcttltBr * 21 <t *^ 
T'#3&t>rc». C (OB^IfB 6 Jc«fc »J «Sffitf I824^H]^ 

©tf *«^BS%1tBU:fe»aTRl3»BB f ©@»^< 
ffl&tonTL^fcA*, C<DB^1tB6fr6^a5S5T«B 
*ltBr*Ct , bT*ftt^!>T» »*<b©i9l 1 t>*t\ 

[0 0 5 8] O^^Ty h#S21li, C©B^«»6 
fiaSLTl^cBE^-v h7£fcfcfcBRT9--/<* 
S 3 l=B U x C ntcSt LBRl-y— l 3 liBSE^'7- •> 

h 7 tf-a-t?BSE?<OBBEi. S5^tgf8 6 Ic^rT2!-3I» f 
* kBffft-afcBBtfBE^^-y h 7 ff*fcBte« $Blc 

iiffl8*3iy)gro 

[0 0 5 9] CO^lCfey, <77Y7 7 >h^S21li, 
«}«1f¥B24-¥>y'CX , 7- KPW£BRpy--A#® 3*^46 
fcB=#l5:B*( v- rct*<» nI3$TiSiiE^^-v h7? 

mm lt«jbbri*»*c ttf t**. 

[0 0 6 0] C©*31C X *HBfe©FfJ!tl£0iSiiEv'7.7 ; A 

^r^fiELx £tt£;rLT?5Y7'>h3MSKBIiE»5Vtt 
B^S^r«.=. BBS^nHHtt. a— tfBSEfiSBStfSu 

%iw&tc»m&\,zWti£<r>^mm* 1 BfiLtMLfct 

©<h. ^7-r7»>h*«tf^BLfcBBEBSJ» (»«1t 
B) t©SMftWBa»3IBBB"P»yv d©«!®1t$B 
ttv BE-y- y^atc«feyBiiB^1fB!t) N 6i£»*n 
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[0061] z.o Ltzmmiz^v. BE*** htf^fc 
wt-'tvv s a— vsKSEfliajWiw* ft* rtbim- s 

Ig|I->7.7 1 /x6M#6ft*c 

[0 0 6 2] (m4©*JS©JJJ!g) Sg4©5?«iJfc!!gT- 
li. m2©ft^8g©BE^:*^Alcfctt£^*lKJ*£>i 

fg ? m <t * ft £ * t % © y □ V* mm ic -o to t 

[0 0 6 3] El 41*. C(JD->7T/»T©^a h37U*7F 

r^a ha)l/->-tV7Bf*5o H4tcfc^7\ 311* 

— •fBE*f543BE-«t-/Wfc Httv^-feTUIB* 
¥JBt LT#iJ«BRl*ff 4 3 BrJ-9— / U E# 
rs(K I ~)j tt«K*ffl^fcBE?BttB**5*LT 

[0 0 6 4] ^^-f7 , Vf-*«31tBB-9--/^*«32t 
©a— «fBB*IOItefct x T«. ❖ ^-TT'Vh^B 

31A\ ZL-+f-r>-5?7i-X^^LTA^)^ftfc3.-tf 
«9J?U I Di1t-y«9JfS I D£«£«>&9fcBE 
^Authenticate Request301*BE-t-/^S32lo2S 
£ c C©B$. |gfIg3?Authenticate Request301#BiiE 

oT^m-Slza, BE*- /WBB»tc*«lE«n «■ 

^a&;5<fc>©«i:*"fttf<fct\. 

[0 0 6 5] CftlE»LT» BEU-/t¥B32tt» 
B**«fc5fc£B*ftfcSL*R 0«tt4oftr2ft 
UVv^Chal lenge302*jMtljS-ro Cftfcgttfc^'f T 7 

fe;tt7-KPWtSAR0i ©Bttfc*f LTn+lS 
© / \ v 5/ a BB H *« LfcttB* £ fc * -a fcBB* * U 
V^J5SResponse303*3MUiSL, Cfttefct LBE+*-- 
7*#K32ti» U> v ; lSS : Response303lCj5tt-S n + 
1 «yvy->aBBtt»£eSff»-3fcn + 1 B/vyS/a 
BBBB^*tt««ELT-*r*iBjEatB», WHt 
iC&SLfc?*-;' hBS'J^T I Dtn+lS/vr>2» 
JBSBt^-f AX*v^TSOi^-y«ffi"J?s I Di 

BE*-/Q2a**3«rBff««ai? i i Dibits 

^BE?t>MtfiD*ft7cBE^ -j/ h Ti cket304£& U B 
f. ? ^ 'T 7 >h 3^6311*. Cft**IBBRl*MTBt^ 
SfcfeKBBT*. 
[0 0 6 6] Sfc. ^5-r7»Vh*B31fcBW-9— 
«33tO*JBBRl#BKfi^Ttt» ?5-f 7*> h#!631 
tfBRTB^Authorize RequestKH'BE^y Kicket3 
05^|gpI+J— y^|g33lCjM*„ £©6$, ERlSsRAuthor 
ize Request tfa-+f«giJ?U I D^ttftdtffltL 
TtJ:l\ cni=»LT, BBU-/t*»33tt. d©B 
E**v h©«BBB(c»-SKBk*tt,ftofcB^ 
* Uy-^Chal lenge306*£U £T. Etl*«*fc*5-f 



7Vh#B31tt« /tZ«7-KPWfc&RR0fc©ilBl= 
ttLTn - k + 1 »©/Vj'S'xgSBH£fi6LfcBB££: 
t &o /cBrP? -V U>^JSSResponse307«-i3iy iSTo 
[0 0 6 7] c©/\y 5/ a 5SBH ^fp)14 

.t^mrofi^s^v^Att^^Tt^isBy. ~©y\ 

y S/aaOWSItty^7- KP WStf&BR 0*BS* 
^B=»fcW:ttBT*c£#"e*fci^fc», d©/vj/-> 
a BBBBtc * »J / « -7- K P W*«*EB*a— 9T 
fe*C<t^*ft*= «*£*#©£*« £'v> 
-> a BB H Otmtf& < ^4 toft T ^ * fca&, £ ©7 W 
-> a -StmSHIfr 6 #©7 \ v a s a BBBBfcftBT 
«fe?*fctvD"P» Bg-^(b©#g i t>&l'V C<Dcfc5J:-5& 
y Vf > aBBH t LTti, flJxli'M D 5 -£> S H A tg. £' © 

[0 0 6 8] dftlotfLT. |gpI H t-y^S32li. BrJ 
U>S>'fS¥Response307tCfcnt* n - k + 1 ®7\y 
-> a BBBBK * 6 tc k S©7 \ y -> a iHll^ffi L fcjg* 
iBE^^y hTicketlCfcHt*n+ 1 Ky Vy->a.5tJI*£ 
m<t^tk««IEL, -HBtTfttfiEatBftTBRiaaRe 
sult308^iSiy)Sro ZCDft, BRliiasOSz^fiJffifgpI^ 
«fc y T'^-tzX^Rl* ftfc«« Inf o«BB(c <!: t % 5 1> 

[0 0 6 9] J-X±©<t5^:^P K=iyU->-'!r>XlC £ fc 

y % <7^^(T> h #IS31 i±y \°x 9 - K p w ^-B pT+t— y ^ 

#S33^^46fcm=#lCB^-riIi:4<, nSSTlSE 
^>r-y K304*(^LT*J»BrI*»* 
[0 0 7 0] c:cdJ;-5%^'p h=iyU>'-y>X^J#-^iS 
liEv/^T 1 A©BBIE"3L>TH 5 ©BB^n y 7 E«r#Bg 

[007 1] EIStCfcO^T, 3H*a— +f'TV4i7x— X 
*#-3<7^-<(7>\-3?m. 32lia-+f1gE^^55:5igE 
+C- 33li7 7 ^-tr7.ttffi^WWTLTfiJ^Bor^^ 
5 B Rltl— y *o 

[0 0 7 2] ^^-I'T'Vh^lgSlli. x-^©jH§{I^ 
'nts-oWii ©BBB*«3iit, a-+ffrS©A**« 
?.A^^I6312<h. 2-p©A7D ; &aiSLTy\y->aSB 
H£*T&-5yvy->a#|g313 < i:, BflLfeBE^^y h 
^«}tr*^'7-y h«*##S314i:, »7 7 h©« 

jtttBicjsi:T»a*B«-r*»a3»?^«3i5t» y\ 

W&L(Oi \ v -> a <i o \ y *s =l ^1631 7 <h ^ 

[0 0 7 3] B1 ©BB«#«31H*^ ^9- 

^x-'S'ji'lI*- K-^P I AFS*-KB©BB'T>^ 
7i-7>SI> I r D A^v^a.— ;l/«©*^Mfi-C 
x-7s^B35:£T«fiE?ft. 3«t*i#lcfSCTC:fte.© 
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it. 0>j?ifcr*-#- h\ xv^-^w^a^^s. ? 

V ? W X-¥>SS?# * ¥ J 1/ i: a^iS® <!: 

£-fc!\ fc^LMi^y^/^l'&^TfcEES'ti^o 

n#iS3i3t±. mxittmmm&tivv-s^UHoyfo 

dT y X A*«3W*A,7£B J*0tt <t fcffl^fo-tfTfllfiE* 
n5o *$-y h«J$*«314ti, BAtfytyEtttofMI! 
fflJtiS. $&33liR#fSi315ti, Ba.l£BBIsl&ffttJa 
Tt5„ BBIBtt¥£316& flj^tfl Ct>-FO£o 

>/ \°ti^^ o it y t y x/ u x ic i o zmmzti 

3o £©/vy->n. #163171*. m«V\-y->a-3l3*H£D 
T 7 ; U P" U XA£*i^a> A, TcSSJt 088 It * 73 £ 7 -r - K a" 

v^r^isn^SBBtsa^v n-*a-»**>BB<oB 
ib&^s* ? -f v p =1 > ^ — * * fcttiaffl p v tf a - 

[0 0 7 4] g-fc. ISfjE+t— /<#B32(i« x : --S'©hI§ 
<l^?T55:3m2£DS§fi#S321<h. 3RftB«al*ttWr 
^>iSliEi+B##IS322^, AX?- F*©^.--fKBE1t« 
*S«-t*ISliEtil?B*«#8323<!:, a— tfBSHflB* 
KSL£i*£j£T3SLSfc£E)6#S8324<»:. 4A6ti/ci ( J 

1 1 &^m&<DJ vy>=L mm h *fr& 5 m 2 ro^e/ \ -y 

-> a. #18325 £: x 2 -OO&W \ -y -> iL{i*itRS?.-n-r 5 
|g|iE8S-&^ia326t. BliB^-y hWnmizzL-— Its. 

BE?ttlJll#«328i:*Ba.Tl/ k *. 

[0075] m2 0)^gfi^32Hi. afs*-y h?- 

^iflllcJEUTffll^tfL AN*- K3?<2L A IM -TV* 

-?n-XWR.. ; ExAlf£0lEti-1'>-?7x-7.SKs Si 
Wx-^iHl*- K-^P I AFSA- K»©jmi-f 
7i-^8I> I rDAtv , 2-)H©«HlH'^7 
x-X»B4£?BJ*S*lS. lgfiEI+B3#£S:322ti. ffj 
^tf'S^a^V-SfjbMEffli-tlSo igfiE1t$BS«#e32 
3li. *§*©;><^ yT^K-fXTfcfiES'tU Ifr-$»>A14 

£&ofc*t yT^K^T.T-fcfttf'fcfcsiA, 
iS324«. m«&»£fiB7 , ;i/p~y XA*«*aA,«a 

fc£?BJ**ft*. B2<D#«Mv5':l#«325H:» B 
itt*/ \ -y H CDT'rt/ 3 'J XA«-*§^ji/uf£jSHt2l 

moan*?-*- KA-y?T*^*i^f&i*&77^> kt 
6«» BAuatBSBTBiasn*. hb9J?£ 

J$#l6327t*. «*lf*E#fcl£'y b&ttvltUVZ/* 



t^up* y XA*ii*aA/7c3ijiiHiaatf y t y 

j££*i*<, 4*5, ±ia=&#ffi£v>r?PP>fc?i-$£ 
fcttiRJ8P>bfa-*±©P>£:i-*XP^A«-te 
fl3LTBBLT*.Al\ »*LH**©=lvea— 

U 7n*5AIBB«ttBByBB£«*«fo-efc«Jffi 
lc«fcyHJjtLTt>Sl\, 
[0 0 7 6] $/c. IBRltr- A"#833«:, x-*<Dj£§ 

?>ISRlf+BS^S332i:. ISiiE^y-y hlc^liP*tifcigaE 
?^«EE-r^liSliE^iiE^^333<!:> liSiiE^^-y h©W 
W&Wt&t'&Ts.o^'rv hW3a#J£#fB334£u ISIiEf 1 
>r-y h©^^-y hMSU ; ?<!:*5a][Hl»<*:^yfiJfflpItglH]» 
SWITa*-** l>-f!lJB««*«335£, 

SJ©/ \ -y -> a. gm H ^^t% 5 SI 3 \y>a ^S33 

6ts 2O0D^ISM'y->iffi*JtlSfi8^-r*l8W^# 
*B337t*fll*Tt''*. 
[0 0 7 7] m3£>&§lt^iS:331ti, af*yh7- 
-J'Oaiilc^ UTffil^ti' L A N *- K»© L A N -< 

Wx-^illS*- K^PIAFSA- K*<D«*g-<>-? 
7i-7SI> I rDAtya-Jl/*©SJ1.«'f>^7 
x-XSH4«i:"T«lfiE*n^ 0 ISpIitBS^S332li, #J 
jLtf^-r^AtfV^tfflBBStlSo BE?«SE#«333 
li, 8SSE-?«5SE7 , >l/3"y XA*l§^)iA,7c3SIHa»Stf 
p< =E y 0»T'«fiK?n5o -y h ^a*J^^S334 

h?u« , gai^is335t±> fimiDn*ttiir«3iinBiK^ 
'jf/wxi cD^-ti-tc «t y «fiEs-n^ 0 

% 3 <D^S/ \ y -> x #IB336li, filJ*l#S 2 <D&W \ v 
-> a #15325 <t nWOXinHUiT A *>*B7*'J*» h 

3 > tf a - * * fc U □ > t° ^ - * ± © =1 > tl° a - 

yt'2-^T'P A^^IS y Rllfe*«SC"Py n A 

fr*t>-ttfc*l£ti: <fe »J JtB L T t fit^ 
[0 0 7 8] W±flD«feoKB«*n7cBII*26RU ! BE 
->7x Alcfct^Ts WT*OBff KO^TB 6 *#bs l 
4^8BiB^"r^>o ^JlTli. BEES^cAuthenticate Req 
uestSOI^IgfiE^^-y h*?5bSS)tn ^iit^e^lco 

[0 0 7 9] $"T\ t>"7<<T> h#IS3UCfc^T. a- 

trs#*^ra— tfB8U?u i Dtmmv— /t^muz 

f"JfflBRr*B*aB«)-y-/«ffiU?S I D,tlSliE^>r'y 
hOD*5»[s]J»n t# ; 3.-+fA^300i: LTA*#IS312tC 
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A2)i-*V£ (ST 3 1 0 1* ST3 104)„X^ 

©312&. D.-yAt>3ooz-ft&n?z>££*>fcy—/t 

SffigiJ^IOIfcSMBLT^-y h«*##S314lCj||^o 9 
*rv Hl&#©3l4li, V—rtMSi&ilonzttfotzm 

m**-; h^-^^iSLT (st 3 1 o 2) . mmm 

«ii«l3102*«MW?#«315lc2£*. $&J1jIIJK#©315 
ti. *MBteJliaffl3i02ffJRL*a*-rii$fctt» a— 918 
iI5aSeiftjl«Q3103^tuiBA^)^IS31 2RIf^S/ \ v -> 

a*S3i7ic5My. su^^-rif^icii (ST 3 1 0 

3) . fiJffiiSRl#IIIS2»lil*a3104^BusH^'5r-y h«8# 
1831 4 «h StffiSBti #©31 6 1 £©/ Vyiy=L #©31 7 <fc 

[0 0 8 0] fij|BA2)#©312l±, a— tfBSESlfcii»]3 
103tf 4* eft* i:. -B3«fS LfcZL-+f A*l300fr 6SX 
i L7c. ZL-+f|«SiJ^<!:tt— / WJ? t*»l[H]a©ffi31 
05^m 1 roj£§fl#©311£:frLTBIiEg;£Authenticat 
e Request301<hLTISiiE+J— /\"#©32K£y (ST 3 1 
0 5) . *&B&3106££©/Vyi'rL#©317U:2i>A 
A°Xr7— K3107«-/\->->a#S313lCjM*c 

[0 0 8 1] fSimt*— M#K32Kfcl/>-n;l\ BHSaRAu 
thent i cate Request301 iZfH 2 £Di£§<B#©321T£{f £ 

m&snTziL— tffssy^32oi* ,; i2iiif$B*a#S32 

31C & 6 *U WJtJl=llfc3202*^ 2 £>$■©; \ V -> i #©325 
Rtf BfiE : ?tt})P#©328l;:jMe>*U n-l <«gij-?3203fl t 
BBE?ftHlP*«328U:3a6Sft* (ST 3 2 0 1 ) . SSI! 
1t«««#«323tt. a— tfBSgiJ?3201(C5>fES-r^/\ o A 
(ST3 2 0 2) . *»J CO^i^t 

(ST3 20 3) s /U7- F3204£m 2 <£>£©/ Vy> 
a#©325lc£St)s *^JKl»3205*SUK£ja#«324 
Rtf M 2 <D£©/ Vy -> n. #©325U:j2i&c, 

[0 0 8 2] SU»£fiE#©324ti, fcSRfgl£Ifll3205ff 

$Sr fc K 5 V * ^ fc£J* L TSI 2 ©£©/ N y > a #©32 
5K3S*£i*.K* M2roS§«#S321*^LTlSiiE^ 
* UVv*Chal Ienge302<t LT?7-<7 , >' h#©3U;:>££ 
(ST3 2 04) „ SS2<D£©/Vyv'a#©325ti, 

m&mMm205tfmvzm?m-£iz. /U7- K3204£ 

U>v-gL»3206<!:^a^i::»LWa[Hl»3202cfcy 1 
£l^©»£>/ \ <y -> a 5SH H^ffftoT, *gm<D£©V \ -y 
->afi|3207*BBE!B$#a326lcaJ* (S T 3 2 0 

5) . 

[0 0 8 3] cnic3>tLT'? ; 7-<7 7 >h-#l831lCjJ^T 
l±. 1811^1' U>v>'Chal Ienge302&£ 1 OjM§'(1#S31 
1T»l*tU 9- V UV57&R3108i«Ry a* ftTVVy 
->:i#©313t;:jM6ft& (ST 3 1 0 6) „ /Vy->n# 
S313liy\°Xr7- K3107«h^-V U>v>"il»3108<!:©il*£ 
lcWf5/\y->^-SJIH«T6QT (ST3 1 07) , 
&%:<DJ \ y is a1E31 09*mmi Bit #©316&lf £©/ \ V 
->a#©317l;:3M*o &«lBH#©316li/Vy->:i<ii3109 



#B5©*f*S-r« (ST 3 1 0 8) o £©My->iL#© 
317ti. a-tfBE#ll!S«iaa3l03tf^*SnTi/»* 
Bt. /\y->iffi31O9lC*aia«01O6(CfflSr*IB«<O/\ 
•y->ZL>H*H*^oT (ST 3 1 0 9) . *g^<Z>£© 
/\->->afii3114^ «1 <7)32l§«#©311£:fr-LTBiIE 
5 1 * U>>>JS;gResponse303<!: LTBlI+7— /\*#©32l;: 
5M£ (ST3 1 1 0) . 

[0 0 8 4] ClftlcttLTBIiE+7— M#©32lc33^T 
l±. ISII^-V U>^JE^Response303l±m2<DjS§'fi# 
©321 TSflStt. £©/ \ v -> i«3208tfBltt*nTB 
SESB^#©326lciMStl^ (S T 3 2 0 6) . BSEBSca 
#©326ti. £©M -y -> a fiS3207 <h $•©/ \ -y > a. {13208 
£©— StfHJSfcfrzi^ (S T 3 2 0 7) x !S-&«*3209 

MS'J : 7 : ^fiE#©327lCjM^ <!: <!: t K£©/ \ 
->afit3208^^S $^©/ \ V > nfl3210 1 LTBSE? 
f*bD*S328U:a*. ha&8'J : f^fiE#©327l*. fid 
•&*£*327#— &£^Ti§^^ ^f^7 h«9J?3 
212**jSLTBBE?failD*»328lcaS (S T 3 2 0 
8) . 

[0 0 8 5] BSEIt^#©322li. ^£^«|*ftWLT 
fe»J. 3RttWfflte»-3< **AZ$r>73211*BII?tt 
jn#®328lC«*&LT^* t> BiiE ; ?«l)P#©328«. 
•v hBgy?32l2t*«/\y5/a«3210i*»ia»3202i: 
AX$> J"i2 1 1 <t "9— / ^BSU? 3203 <h BSiEtt— / <32 
S»*SrSMT#B»J?t*aiSU Ctilc^LTBS 
^^BELT^lJPLTBSE^^-v hx-^3213t L (S 
T3 209) . B2©a6S«*lft321*^LTBH^^ 
y hTicket304<hLT^^-<7 7 y h#©31lcS* (ST 
3 2 10) „ 

[0086] ntiiztiLz<7^-(Tyy-^mnzis^z 

It, mWf-'TV KTicket304l*mi ©2ISfi#©311TS 
ffS-tls WW1->T'V h7 : -^3110^g5ttl^tlTBufBg L 'b- 
. y h«*##S314CCjS6tl* (ST 3 1 1 1) o HUIB5 1 
^•y h«Jt#©314liiSSE^^-y h 5*-^ 3110**7— 1\ 
■ffi!l?3101i:»l£-3»T«l#L (ST 3 1 12) , »Jjg 
BRl#lillSl]iifl]3104<) l ij&j?.6tl7c«-&l^ BliE^^r-y 
h 5 s — r ? 31 1 1 *m 1 <DS§fi#©31 1 LTBIi? 1 ^ 
v hTicket305<h LTBRlSiRAuthorize Requesttiit 
lcBRT-9—/^S33li:jSI5 (ST 3 1 1 3) i:it,lc, 
BEE^-iry hx—$!fr6*)aJlH]»3112*I2tliLT^©M 
'v->a#©317loM*o 

[0087] d tllC« LTBRT-9-- 1 ^©331CJ3L^T 
lis BSE^^y STicket305*<!:t^:ofj:BRlS5l<Autho 
rize Requestl±m3<D&§ffi#©331T-§{i£ft, BSE 
^^•y hr- £3301 6^a3*nTBiiE^iiE#©333lC 
3X6*1?) (S T 3 3 0 1 ) „ BliE?«liE#©333li, B 
II^'T-y hr- ?3301£DB!iE?<t:BliE?lX5i-OT r -'S'a5 
<h<DH^1££8HLT8!IEJ£li3304:£^>r-y h«SM»J* 
#©334lCiH^ t<ttlt (ST3 3 04) . x-^SPA^ 
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6 * -f * > 73302 <b -9— y «BU?3303 t^EXtij LT 
h*aWS#S334lC. ^-Jr-v h«8ij?3305£* 
&/ \ V > ifil3306i:««lig*3307 <t SM5#«M?3308 t 

SBHtiLT**-* i-fijfflss^©335tc, 

[0 0 8 8] i§PlI+B$^S332li, St?£B$SiJ;&i+B$ LT 

*«M>J«¥«334JC«tt8LTtN*. h*»M:t* 
S334«, «iEISJIl3304ti«Ky*L*Sr«*lE (ST 

3 30 5) , +t-y^msiJ?3303i:rtg|Jie«*tL/'cg H t- 
/^KSJ^ttD-^J^SAo t ttK (S T 3 3 0 

2. ST3 303) , ■$i'(l A X$>Zf2302tm&V$PllC 

mP^T&^^t^^^y^LT (ST3 306. ST3 
3 0 7), Wt\.*,K?teZm&K.**'y hW%jiM33 

<ii±i*<£T u i< wot? * t =l— *r$mm*to±+ * 

SSLTS^^^^T^^o 0!l*.t#JR*ft-fe*:iy?-<£ 
Ttt«**nT^ft^*W15';*xlkfc»BTSftStf 
1 B©IM*BSIB*a/{-"e**8B3IMfty 1 2ftlD&U 

[0 0 8 9] ^^-y hfUffl^S^IS335tt^ 

h 'J 7. h*flLTijy, h**lfiia3310tP 
#*.Sftfc»&fcs h»S'J?3305^ffl^T^^"V 

(st 3 3 o 8) o KarstciHii^nHr^^y 

giJ-?3305 <h ^St)ta»3307 £ « y J'Jffl RTfliStt <t fit 

<t LT^m^m^^m^:^ y k y x k icjEtp lib 

tTT* (ST 3 3 0 9. ST 3 3 1 0) . £<DB$, #■© 
y \ <y -> a AI3306 <!: »fr**»J?3308* fcfc-tiTfBtl L T 

»335l4«y fUJBRlttia«* 1 s*^ *»E»t»y*J 
fflRTiHa»t©fftf^t-*JffliaiQ311**46 (S T 3 3 
11), cn**3(DaSS«#«331*fl>LTBpJ** 

tttc (ST3 3 1 2) , *30>*«MvS/:i*«336 
fct>»*. $ft, *«/vy->a<l3306**fl>*S*«/\ 
■v ->affi3312t LT12RlBS^IS337^iM«.o 
[0 0 9 0] Z. ftltfcf LT ? •< 7* > h#®3HCi5^T 
li, ISrI^-V UVv'Chal Ienge306l*m 1 0>jM§lt^S31 
1 i|H)flllslS3n5#SRih* ftT$W \'r>3 

#S317lC3MStl* (ST 3 1 1 4) „ #S/\->->a# 
J$317ti, |iJ«S8Rl^|IISiaa)iiflI3104^4*6nT^* 
MIBttWiatf #!6316J: y 5/affi3113*» 
T (ST3 1 1 5) , M'y->n.^i3113^S»[2l»3112<!: 



i uffl 08*31 1 5 <h (omcft m ? z \ -> a aw H * 

frftoT (ST3 1 1 6) » *£^CD£lft/ W ->afil3116 
11 CDj£§<I#Ig311£:frLTB^^U>v ; JS£ : R 
esponse307i:LTS2Rltt--/^S33lCjM«. (ST 3 1 1 
7) o 

[009 1] ;vy^:i3tf?H#ft#££ft-73lRlt£<!:*£ 
^«DS*St?7>^Att^}#oTt^RBy. Z.(D&W\ 
>y -> a«31 161*/ U 7— KP W&tfSl& R0?!9!5^ 

ttttjrr set*?* ft c<©*«/w 
->a.{i3H6ic<t y n°7.9- F p w*ffl*jESft:i— *rr 

/ \ <y -> a {lie * / \ y -> a 5tW H 0)W&1f3> < frft 
tlTL^7i:A6, CfiO^«/\y->a«3116^63»©*aA 
•vv'afB^I+ll-r^CitT^ftt^T-, Bg^«(b©*2SS 
*>ftl\ ftfc% /x-vv'iiiSWi-flSlcBi^Slllcfcytl 

oo«w±iB5$T**t*n, a«ift«»T*n(iB» 
*Bi*r=*& * y tisaiicai^eftx^o 

[0 0 9 2] c:ntC»LTiSRl-y-/^l8:33li:fc^T 
(4, + U V v ; t5 : S : Response307tim 3 (D&iM^m 

31T§fl*n, ^S/N'V^iLfilSSIStflSftii^^T^SO 
^|gy\-yi/a^|g336lCjS6en^ (ST3 3 1 3) . 81 
3 £>£lft/ \ -y -> n#S336ti, ^18/ \ -y -> a.fil3313icfij 
^[HlSfc3311lCffiS-r*l6ia©M-> ->a>SIIH ^Tft o 
T, &Zk<J>-Vl&WVy -> 3«3314*BpIBB**«337 
IC5M^ (ST 3 3 1 4) 0 I8pI!1^S337^ ^IS/\ 
•y ->afil3312 1 \-y > =LmttUt0>^SlWl£Z 

frftl/> (ST 3 3 1 5, ST 3 3 1 6) . KT-££ftS 
tff2pni*a3315£. 3f3roS§^I#IS331^^LTigpJ 
ilfflResu lt308<!:LT-J'5-<7 7 >h #«31 ICS y ( S T 
3 3 1 7) , C3-<T>^^mUZtS^TSimi£ft^ 

(st 3 1 1 8) o zojsmz&v. v^jt-sv^ql 

zmttxy- KPWfcBRltf- /t*S33**4&fc*=# 
lCB^-rzi<tft<. nBSTfgijE^^-y f-305^:ffiffiL 

[0093] ftfc\ ^oimm-v^^^yy h*S3i 

0>*W \->->afil«»BuftJILT«ffiIE«#IB316t«:E 
1ST?>«lfi)6<!: LTt.SL\ -?-£0*l^ «KB§Bffi^£Si316 

i lt J: y >A°tty t y t^m-t x^e^ 

jg-sA^^too, *ijfflBpi¥i«ct<7)»a^iB* J: y 

[0094] n 5 ic^ LTcn 4 amws^<^w 

-sXTJ+lzte^Ts mWf-tl'Tt'y^-'JmS.^- K 
^ffll^7c«^OBijE?«J]P#lg328SO : BiI^iiE^e3 
33flD»«ft«l««yatfiM^^-3l,^T, H 7^^111 8 ^# 

[0 0 9 5] Bli?«»n^lfi328l±, B7lC,^-TJ:-5 

IB«*«328Ai. 7 s -**3BSr*x-*31IS*ia:328B 
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iBis^iS328D<t:> nmmjDftnvB^t&mznft^&mm 

[0 0 9 6] C<3DSKSU?IB1i*S328Ali, 

iWSx-i S»/\-y->a^lB328Ctt, 
tf My ->3.mMh (DTlb df'J XA£*S*&A,7c5&lf[£]8& 

ia«#e328Dii, «?itfy*y?«*4*u »^>/\°tt 
Bg^S328Ei*. maimer a* 3 v XA^m^^te 

Z\Z\T^7ll>zi<JXL,t LT(iv «3ttfD ES^h'J 
£flWP* *. BSE?ii*£#«&328Fli, 

[0 0 9 7] Sfcs f8liE?fciiE#IS333l±, 081^ 
<Hol^ S81iE?^x— ?A^»f»r*i8iiE^SI*IS33 
3A <b v / \ y -> ^ 5S!t h £fr& 3 m 2 © jUSt*- ' * ; \ y > 
u. #f6333B <h , IgfiE+t— / ^1631 <h 18 rJ+t- / ^S32 i: 
A^iiOSSi: LT&otr-Mttii«£iBirt £312© 
+r- /\-ttilSfB1I#©333C<l:. «iia^iC©Bg^5QS* 

^^m2^ii«^iCBg^|g333D^, x-***^ 
#J»*-r*x— 5J»»*IB;333Ei, JHHfBSU^fcRte' 
T*«15*BB]?B4*«333Fi* * y-t-5>BIEa- 
K *it»;t$liE-r £ ifctS^ &333G <t Mfii L T V» * . 
[0 0 9 8] £0DS81iE?#l8t#J$333Ali, 0g3.tftt9lsl 
SST«!^n^o £2©iI*£x-*My->:i#J>8:333B. 
m 2 ©-9—/ ttSMWBtt* «333C»tHS 2 COttilg^iC 
Bg-5HM8;333Dte, *=h/F*ll2 7l;:fcH7£328C. 328D, 32 
8Etrai:J:5JC«ia*tl* 0 x-*#86#8333E&, 0!l 
AtfBfflig»T««*n*. B*T*B8!l?Bte¥«333F 

#IS333GtS\ «<Jillf J«RIsll»©ffl-&-a-lCJ: »J HMMm 

ffl zi y tf a. — * ±© =i > tr a. — s* y □ ^5 ix^mrn lt 

[0 0 9 9] JW±©«fc5fc*«*ftfcBE?taW«32 
8»tfBE?^¥^33(0»f*ii:"3l''TliMI3 , r*. BEE 
?ttiJP#l8328T't*x **\ SiSIS'J : ? : IB1S?S328A^6 
5 s - 2 aSS#S328Bl;:BiI+J— A g **g*TBS!J?tf« 
^7#MSU?328ai: LT#**e**T^*<, 
328Btis m 2 ©S§«#«321 * »J <#fc#5»[H]»3202K 
tf+X-M"BSiJ?3203,t. I2IIS8^S326J: U ftfc$B 



/ \y -> a«3210i, BKttB3¥H322«fc y {JW'fiiX 
$>:/3211<!:. KBBKP£/**«327<fcy»fc*- 
*y hBSU?3212£s §SIS'J?!B«#lft328A«i:*J^fc^ 
f5*BB'J?328a t £> tltdHmT'm<TW& U =r 
~? 35328b <h LTjI^x- £ / \ y v n ^S328CSO=BliE 
?»S*«328Ffcai*. 

[0100] Jiig^— ?/\y->iL#©328Cii. ^-^SP 
328bKSrr 5/\ y -> iSJ* h £fr& o T, US*©/ \ y > 
ZLfi|328c^«ii»^iCBg^^S328ElCS5o ^ilS^it 
B^?iS328Ete, n-l \"ttiia!B«#®328DA> 6 \" 

ttiiS328d^^T. z.tizvmmicm^TJ\y>3.m2 

8c^Bg^-fbLT, P< y ■b-v ? l8II=I- F328e<t LTlSliE 
?ii^«S328Flc^« 0 I2!iE : ?ai^^S328Fli. x--? 
SB328btc^ v-b— ^BH3- K328e^aiKLTs ISSE^ 

y > hx- ? 32135- aa^j-r^o 

[0101] iS!iE?^iI#IB333Tli. ST. IS 

SE^y-y h-^-^ssoi^iSSE^SI^iasssAicAT:* 
tls /■yM-'JfiU.^- K333a tx-f SB333b ilCtfSt 
ftu ^yb-v^BBEU- K333atiJ±t5#K333GlC, t 1 ' 
- * gB333WiH 2 ©aigx— * / \ -V -> d. ^S333BStF^ 

-^^sf^ssssE^^-n^njMen^o S2©agx- 

•S'/N-yv/n^SSSSBti, •^-*gB333blott-r-5/\'V>'3. 
jlllh^&oT, JSS©/\y->afii333c«-m2©±tjl 
»^jCBg^|g333D(c5M^c m 2 ©^il^iCBi^lS 
333D13U m 2 ©+X-MitiiaiBtS^lft333C3b^ 8 V-J m 
il8333d^^T, Z. tlZft^micm l^T/ \ y -> afit333c 
ZBB^itLT. iHKffly y-fe-S^BEa- K333e<t LT 
]t«^ia333G^jM^ 0 x-*#8!#!8333Eti. x-^SP 
333b5 ii'T^^V X3302 1 H 7~ / WJ?3303i y 
h !ttS'J^3305 «»: ^18/ \ y -> n fil3306 1 W®lH]i*3307 i » 
^#»SU ; ?3308 timMLTit,t>?2>t£*>lz. 

^T#l«SU?B8^®333Fti, *ff**gU?3308tf 
BiiE+x-/ \"320D!«SiJ?6> i:' 5 ^*BH$ L. !!S««SJR333f 
^^#183336^^^0 ttR?S333G«, BB£-*±S333f 

a*ST^ ^y-b-iWEa- K333atib»ffi^ 
y -b - 5>*SBSE =1 - K 333e i: 6^— "T * £ t <t 1^ «1B£ 
S3304^dl73-r5 o «Hiig^33046 , :ilSy%L5mrO 

[0 1 0 2] E5©m4©||B6^(l|£0l2liE->X7 1 

i2Ii ; ?^JJP#S328RtfigliE^«aE#ie333£D»SfiERO : lb 

fpco^T, 09^111 ozmmLTWimrz* 09 

lCfc^TEI7 iSS^^ti. -9— /tt8MMB1t*«328D 
S^ilSlT? iCB§^#IS328E©^fc 'J IC. BSE-y-/ *32 

S328GatfiiBfia7D ^©Bg^jlQS^^^ 3 iiBflSfcS S;Bg 
^#©328H^I6tt fcjJUC 2B *. i «5?&SIB1t#S328G £. 
LTlt. «7tl*y*ytf«fflT*, I$V/^tt*^ofc 
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328H<h LTlt. m^ii^T^'JX^m^hrim 

[0 10 3] $7c* 01 OlCj5^T0 8i:S^5fl3«, 

*2©-y— /ma«iBti*®333c, m2©ttiia^3:iig 

**«333D»tf 58ff#MgiJ?!B*#a333Ffl!)f«t) 'J fc. 
BtRf-/t#^1©£M«*?-/TOJ?£»J6'3M'T 
1 OW±«8ir*-9— A45UI«*a*a333H»tf45ll« 
3SSCB»©«*««*ffft345IJI»&SHl**S333J* 

SBW#IS333Hli, BBE-9— /^«32flD*ft6rBpI-9- 
-/^*S33©45BMI*t>«ar* , b©tLT'fc«l:L'». ? 
-/ttiBM«»#«333H£ LTtix 'J ES&tf 

4iMat&SC«^S333Ji: L7B, m*.tS9&TlU3V 

xj**m*iiMeMKEm* tcitsm^mwm xn -t v 

BMto5SCB»#«328Hl::feW*flH»7 , ;UJ , JXi*H:a(S 
T*«^7'/I/3yXA£JBl>S£<fcli*5£T' i t>ftt\ ) 

> ea-*±©3 > tr zi -* yp <f=y h.*mm ltssi 

[0 10 4] J^©«fc5lC»J«*ftfeBIE?{tfbll¥a32 

8»ifBH?wi*«333©iM*fco^TBM3-r*. be 
^-m^mizTte. ei«sij?fBii#iS328A, f-^i 

*£^&328B, J«S7 s -*Mv5'a*«328aJ!>«rfroBI 7 

i: mares y. T r -*»328b*«ramii6#fft32 

8FIC, A y-> □.«328atWiBHE& 5t9§^f6328HK, ^J- 

n^tifit^i-n^o iinsa7DiCBg^^i&328H«. e«s?B 

81 Btg^®328Gfr S gfaffi8328f ?i?T> 21 n^Bg^SI 
lCffil^T/\-V->a{l328c^Bi^<bLT. t 9 J*I\M2&. 
8g<hLTfg!I?jSlie#i&328FK&* 0 BEE?itfi#a:32 
8Fl±, 7 ;1 -^a5328blC7 : v'^;U5*328g*^LT. IS 
W^-Tv h ^-^3213^*73^^0 

[0 10 5] BSE?«SE¥«333?ta\ Sf, IS 

SE^frv h^-^OItfigfiE^JIt^SSSSAKAJj^ 
*U ^'^^SSSSSg^ ^-^353336^ tC»JHS-n. 7= 
v ! ^;US« I 333gliii^S7DiC^#S333Jtc, x-^SB 
333blim 2 OjHSx- * / \ y "> n ^S333BRtf =f— 

> zl ^S333Bl±, 9- * SB333btc>Rfr \v>=l >H J* h 
fcftft i T, mmOJ \ y -> afi333h^ JtlS^S333GlCiM 
£o 7^-^^WI^Ig333Eti, x-S^Sb^-S-fA** 
> X3302 1 n-l «R|?3303 tf^7 h «»J?3305 t £ 
{£/ \ y is J. {13306 £ *5a0»33O7 i fgff *MBI?3308 £ 



*a^S333Ht±, wamm.'ftfriiwftm.'fnnmmv-j k 

31 (SfcttHRTtJ— A32) ©MM?fr £3 

U Hl^*333i*i«8#«333G£2S*££fcttU 3S*t 

#«BiJ?3308(C»J6r*-9— /«45IIHi333j*S5IB»5a 

«^IS333JlCjM«e 

[0 10 6] iiSSSTDiMI^SSSSJte, +J— jVAmm 
333j £«^8li:JS^Txv^ ;US«i333g^ fl»fb LT. 

tmmiwi'n-mmt LTttm^m^Gizm^ tost 

^S333G(i, BB£tt*333itf— Bf^f t\ J\y>3.m 
333h t tmmJ \ y -> a«333k t ft— St? 5 £ t i (eft 
SEBJIl3304«tti2)T*. «SE£*3304tfgS y ft Lfcijvr 

[0 10 7] £©£5^ ISBE^XxA^dWIIJfiJBjg 

©wm^fig^. c^iccfcy. -?7-<7'>h fii^tf-iinsig 
[0108] m s ©usifDraas) m 5 ©hsiejksit 

m3<DHS6JK!ll(D|giI->X^AtcfcHt^^<*W&ii 

[0 1 09] EI1 H*m5©SlSfim»t::fctt?)sg!E->7. 
f^®7*P hP;U^-TXn h □/k>-^>707'$ 
So 01 1lcfc^TEI4 < tS^:S©t±, a— tf-f>i?7 

KBE-y— / ^#®42<t o IS rT-9— / ^®33li^fc 
l Jtf*L\ Srt. |gfiE^*b>-> , JE^Response401#:a 
-+f -f 7 i-X^^> LT A73*nfc/\°X 7- K P W 
<hfl»R 0 ttDii^J* LT 1 ->aaiIlH*Jfc 
Lfc^*<h^5-<7 7 > h^l641^ffi*tcifi)tLfcigiiE 
ffiSL»S0^(D8f«e<)!ftS«]i!gm (IB^ r @J 

M«faaw*^r) ^tt^a^ mm*rv ticket 

402, 403*': t> ft 5 M y > a gilltS^^ISEEffl SL» S 0 
leaf Sn|ftOy\'V->ajSllf^T*S*. IgRj^i' b 
> v > 'lS : gResponse404^ 1 1 ft / \ v '> a SIWBJRtfB 
iiEfflSLST S 0 lc5>f "T * n - k ig<7>/ \ y -> a SKItTft % jjK 
A^SftSo 

[0 110] J-^OJc-pftXa ha;l/->— 7">Xt;:«fe 
y, ^z>^7^ h-^S4Hi/\°x9- KPWfcfgPj-t- 

^S33^#46f;:mH«^0«^-rc:<i:ft<. nE^TISliE 
^■T-j h402*ffi«LT»iJfflBRr*»*Citf?*» IS 
iiE5 1 'r-v h4026V\°^'7- KPWKftiHfllOlWraS 
fcto, ^iEftmH^lCctS/^^- KPW*ifitr7c46© 

[0111] d£DJ:aftXa h=i;l/>'-'r>^^}toiS 

B8Lft6^SlttB^-rSo 
[0 112] El 2ltfc^TtE15<»:SftS©«x a- 

SgiiE^?Tft 5 BEE-9— / f#«42?* ^ T> B rT"9— / 
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TEI5©<?^-r7'> h#IS3l<t:S&&©(4. a-+fig!i 

bfy hS<D^fte6*)ISSffl3l»^^T&-pmi ©SffteWiSS 

fc. SgfiE+t- /^«S42lCfcf«TISI 5 ©BK+f— A#IB32 
tlftiOlt B2©£«/vy->i#»325* BEEB& 
#I8326©TC:h UK, /\y->a BB H SSft 3* 2 (0/ > 
•y->a*«42l. fcf* h«©&flfettBBABBB&tt3 
B 2 ©BttttM3*D#£422« ^ A 5 tlfeBR©/ \ *> -> 
a3WHtffft3*2 ©£18/ \»J/a #«423*ttW\ 
-»©BB*3M&fcj£l;:**. BIiEBa»£B#«41l 

bb&« Bfci^ttBBwy-rxtx-srflsTfcBBBB 

ft2#flUBT*S. BK B2©*fft«B«»#»41 

2, 422tLTtt» BawBssBiMWB?**. S2c 

y \ >> -> a #18421 <t LTli> i^tt/\'V->aS»H(D7 
;U=PJ XA*«*i^£BBBBtf«B?* S. * 2 © 
BJR/\y v-o.#f8423i: LT14. «a.tf42l£ra«©BB 

sHn=a*>« 7 -r - k a y * r sBB-^iea* t> o > h 

#18* V -r ? P P > tT a - £ £ fc 14 iRm P > tf o. - * ± 

xCT'Xp^AbBSBWcSESU Xp^AIBBSK* 

[0 1 1 3] tt±©<fc5lE*B*h7cBB5'X^A©» 
ffCOU701 afcBEBLtttfSBKBT*. CCT'tix 
IgfiEBSRAuthenticate Request301#|g|iE^<iry hWSft 

[0 114] $f, *^-f7 , Vh#B4i;8ttFBIiE-y— A' 
#£842tCfc^T. SK B2©BB«#»311s 321. A 
*I#I8312. h«J##£8314. »£Sft#JB315, 

BEEB IBS«#f8323. SLK£B#&324©lbmiH 5 . 
H6©»$i:ra«T»y% ISilgmAuthenticate Reque 
stSOISU-KliE^-V U>5?Chal Ienge302#3£&*ft7\ 
^^^fT> h*«41lcJ5^7"l*a-+figEE«iSjEl!Jii5E0 

4ioisrcu:fijfflBRi*ime«iaffl3io4fl« % bee-9— m# 

IS42lc*5^Tt±#aisl»420i<!:+J— /^aigij?3203i:y\^ 
■7- K3204<fc«BB»iI«]4202<!:^+ UV5?&*3206£ 

tf»5n«. tctcu n— tfBSEiftge»isa4ioifi«Hu 

IBA2)#I8312. BBBaJK£B¥B4ll&tfBl ©SHfe 
WBffiH#«412U:BS*l*jSU *%l£]3a4201tfSl2© 
££/ \ y -> i #«423atfBB?tti)D#«328lca£ S ft* 
«BttBiiffl4202tfB2©My5/a#B421, 8JR 
*fi£#S324SO : ^^ y h«giJ?4fiE*«327JC3aS6ftS 
jSu U>v f SL»3206<?K 2 ©Ay fa #18421 K3M 
S ft S £ «!: *> KB 2 ©5£§{s#IB321 LT * 5 -T T 7 

> h#«4Hca{sn*jS#R**. 

[0 1 1 5] 3«c. ^7'T7>h9ft41(c^T. BSE 



B&tt£B#«411tt. a— 9*BSE«aQftiitt4101^ 
#*.e>ft£<!:. KBS*BWKJ^Sft*BIiEJSSLB41 
02£BfcK3>#A#c>«J«Bl;:£fi£LTBl ©ftfttt 
B3SP*«4l2aa : «««B1l#«316(cai* (ST4 10 

1 ) o BffifB«#IS316l4. BBEaJk4102«»BB(c 
EBLTffiS©?****©** Ta*>«3.— lfBE#B 
fcfcttfcBiQjHfiJ^JBB^WfcasttSBB©*!* 
ST* (ST 4 1 0 2) „ B 1 ©8Efls6<)B3?a#IB412 
14. n-+fBliE5aSEtbafl]4101^-§-^.6n^<5:. Ay 
-> zl #163134: y iffcy \ V ->o.<i4103<t BaEfflgL»4102 
t©STt*7 h«©Btt«W»nBB«17ftt\ BB<t 
LTB 6tifc«SL/\y->iB4lC4*B 1 ©BSfll*«31 
l^&^hUTlSilE^-^ U>v ; tS§ : Response401<J: LTBSEtt 
-A#&42C:iii* (ST 4 1 0 3. ST4104) „ 

[0 116] CftlcttLTBIiE+t-A#l642U:fc^T 
14. BSE^+ U>^JE*Response4<m4B2©iggfB# 
18321 ft. BSLny ^o.fi|4204ti , 'IS!±JS'tlTB 
2 ©BttAtjBSn#«422K£&ft* (S T 4 2 0 

2) o — STB 2©/ \y 5/ a #1842114. BBBB904 
202#By*iST»&^ /U7- K3204i5 1 A'U>'v'' 
iL&3206<h ©BBfctt U\'r>23MH*ffaoT, B 
»©Ay ->:i<ii4203£B 2 ©J#ftsWB3*n#8422l::« 
BLTV* (ST420 1) . B 2 ©SfffeMlilSSl^® 
42214. S2dD;Vr>i #i&421 <£ y &tzJ \ -> n.fi|4203 

t msu \-y-s=L <i4204 <t © n t- tr h mom mmmmm 

BB*fiftt\ iSS<t: LT»S*lfcBEBaS4205*B 
2©j&a/\y$/a.#®423lC)SI« (ST4 2 0 3) . B 
2 ©^S/ S y -> a #S42314. ig|iEfflgL»4205li:>nf 

5fiisia42oi*i^©i8ia©-' \ y 5/n.mn » t. b 

B©*I8/N -> ^<l4206«-|Sli : ?^l)[l#ie328lc5M.5 
(ST4204) . 

[0 117] WT. ft7 hMS'J?ifiE#S327. 12SE 
ftB§#!8322. i8SE : ?#llP#l8328©»im4E4. El 5© 
t HWT* % h\ f^7h BSU?^m#l83273b ,; BB 
$BB3209©f«to y (cBBBBilB4202«B^%jS[. IS 
SE^iP#l83286^aisia3202SU : ^ieM y ~> a«321 
0©-ret> y (cW^Ea420 1 Slf^a/ \ V -> afit4206^ffi 
l^*j5#Bfty* ISSE^T-'V h5 r -'?3213<i:t4SS5P«9 
S©BKf h ^-^4207^6*1 (S T 4 2 0 
5) . B2©SSfS#«B321^LTBSE^^y hTicke 
t402<h LT^^fT'V h#B41lcaSSft*. 

[0 118] cimc74LT^3-<7'>h#S41^^^T 
14. BSBB1 ©SSB#®311. BIB^yy h«B#«3 

BljIH]3104*^7ten7tB-&lC. Vm^t-v hTicket40 
3tf B Rlg5RAuthor i ze Request £t*> ICBpTit— V 
33lcSen. *»S»3112tfB«/\'yS/a.*«317fc« 

[0119] cnettr «BB-y--/f3MR33©ibfpbB 

5. E6©a^tlll«T'fey. BRf^+bVS'Challeng 
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[0 12 0] £ftlottLT?^-<^>h^i6:41U:fc^T 

14, S3IBJBl©iSSe«#S311, #®/Vy->a#«317tf 

as, B6©«dira»(ciM«-*. fc/cL, Byie«i® 

IB1S^fft316<i: y i#5©«i8!IfflSL»4105Tfe U (ST 

4 10 5) , Cftl£ttLT&3I6MT&:bft*o Tfcfr 
"5. ^Sy\-y->a^S3173b^i£bl2lli3112 ( i:fUffllElSSt311 

5 t ©Mttffl^ r £IB»a>/ \ •> -> a 5UC H £*t& o T 
(ST4 1 0 6) , Vy-> a fil41 06£3I1 © 

&gff #1631 1 fcrt LTS2PT5 1 + U > 5?j£*Response404 
<tLTiSEI-y--y^S33tCjM5 (ST4 1 0 7) . 
[0121] dtllC^yiSRr-t- /t*«33j6H§*BRl* 
^ U > v> JS^Response404 # i: t & 5 Vy -> a fifi, 
ISEE^ <y h T i cket403jb' i 1 1 ft r> \ -y -> =l fill4, 

15, 06£DJ«^-<!:liM v->a5>t^S^^<D*T* 

y, mmii'&momnmmtmrcnz^Zo st^T, z. 

£IH«T<fc<, 2o<D^6/Vy->afil0)|lf|^:£*i'y<j7 
LTv IEa«tlg<»tL«'i8orilfflResult308tf t jgS-n. ^ 
3*T> h#®41lcfct>TS{I*tl-5o C©*^tC«fc 

y, <7^^y> h^fft4i teA'* 1 ?- kpw*srI-9-— 

^K33^#»fcSlH^lCB^-rc: <b%:<, fr^JiX?- 
KPWi{*JftBII«T'fi^<7)«tyaBUSfiE5 L '!r > y h402 

LT n BSW JEigpp&ff* 21 <t T* S» 
[0 12 2] fcfc, J-X±©IHfETl4-7 5-<:P>h#I&41 
ic JSLNTf UfflsSRl^llOfctftt^S/ \ v -> =l fitfcft JCT 
3«/£<t: Lfctf, IgiiE^^-y Kco^#B#tc-r^TO)a» 
\ -y -> a fit** fiu it» L T««E«*«31 6fcf B 
It TZtmt LTfcftlA, «ffi§B«#f£316 
<h LT<fc y *g*<&»* t y t/WX*SI>8 

[0 12 3] £©<i:5U:, sgili/XxAtfCfDISffifl**! 

ommz&z c t k «t y , ^^-fz>h flytftmaasui 
tfet«s<£y, <fcy££i4©su\ 5/>40nj--r:/*> 

^igiI73-3JSLflSIIv'X7 1 L3bMf Stl^o 
[0 1 2 4] (ft6 4>£ffi<D&tt) 3l6 4)||fiSff5!Btf>Ig 

[0 12 5] a 1414, C^ISIIv'XxAiD^P h=i;l/ 
£5vr:7n h=i;U->-^>XElT'S^o H14lcfefT 
EI4<hS&*£>t4, ?5^7'>h#85i;&tf|g5J-y-.K 
#IB53T25oT, IgliE+t— /^S32(*a*>y ti 5 *^. $ 
fc, BrT-9— y«3/fS^5'T7>h**51K. BrIiIM 
Resu 1 t308i: 1 1 ItMfr* ftfcBSE*$- y h T i cket501# 



BSftfcjiSitfBfc*. 

[0 12 6] CODBSE^'y Kicket50U4, BEE?^ 
•y h30Slz:Jt^T, 3fc<D^tffflaLTt-»*. 

[0 12 7] BP'S, Igli^'ir y h305T©n+ 1ISn-y 
yiiSI^ltf, n-k + 1«/vyS>a3HHg* (kit 
ftJffllBltt) tcS*»^5tlTt^c Bsl^-y K305T 
£0*56bl2l»n/3\ »y?!lfflRll60»n-klc«*»S.6 

7*TSkl;:IfM5nT^. Bft*BSU? I I D# 

bri-9— / <53 g#*^-r -y— / tBsmcB***. s ttr 

[0128] C<D73 5ilcJ:y. <7 5'T7 , >h#S51l4, 
/\ 0 X-7- K P W5-igpJ-y— /^S53*$46fcmH#lcB^ 
frT£<!:&<, nlslSTlSiiE^^-y h304-¥>M«T3-nfc 
IgfjE^^r-y hSOI^fiMLTfiJffllSRl^i^Clch^T"* 

n^fctt>wasspfi^«fcys<t6ST*^ c , t<Dtcst>. * 
ie&3i=*ic i^iewtiic^ y -5 asBKtfs < * y . 

Jcyfi^ttft^S^o ^fc. ISRT-y— A^S53tuJ5tt*y\ 
[0129] c:cD«i:5&"y*p h=i;U->-'ir>x^o|g 
[0 13 0] 1211 5lCfc^T, S5iS^:5©l4, 

-<z> i-^!8:5i&mgpry— /wss3?ftu« BBE-y— 

/ ^183214^*3 y 6^ U\ *7h, ^^-<7'>h#lg51lc 
ts^zm50><7^^y> h*S31i:S^«.«Dl4, ^y 
h «}#^IS51 1 tffgpj +*--./ «#«536> 6 CDlgfiE^^ -y h T 
icketSOKDBSIiE^y'y hx-'S'SIOItSJtT^SJc-plC 
L/c*^fe^ 0 $f Cv HgpI-y-/^ia53tC*3^Tlgl5(D 
IgRl-y— A^|g33«hS%^CDl4. ^^-y h*iJffl«S*« 

siwm^mm^m^^thtit^otu S3© 

^•IS/ \ >y -> a #|g336Wf^te U t:: 1 SO/ \ -y -> n H 
^^■5S3 0y\ y->n^S532^Ct, ISiiE^^«y h 

icw-r *bbe?**j« lt wuor a* 2 udbet^d* 

[0 13 1] ZLOTtr-y h«J*¥«511£LTl±» 
•y hfi^«314t^«©«fla«ai*3ai«lLTflfifflT 
S-^o ^^-y h*'Jffi , gS*l6531i:LTl4, hf'J 
JBW*«335£m»DBflUN6«*iMn LT^fflT* 
5o m3<7)A-y->a#®532i:LTl4, fi»J^l4/\'y->3. 

a, m20Dt21iE^t»P^®533<tLTl4, BBEWUQ* 
«328£ra«<OB«tf«fflTS*o ±IBS#S^ 
^ -< ^ a zi > tf a — £ $ It ihm =J > tf 3. - ±03 □ > 
tfn— Ji^D^^A^fflLTIiaiLTtSl-V ^2.^ 
14^0=1 > bf a— * 7n *5 A*tt«y Rjt6%ms:Ty 
Qf5AIBBa*teEBL, ^□^'^LiB^igftaixy 
SBt«**to-&fc«J«lcJ:yit31!LT«.ftf. 
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[0 13 2] LX±0)<kofrmffL-$tltcVZm^XTl±(DW} 

BUSsRAuthenticate Request301 #1211^-7- y I^jHj 
P3$St n £ £: t * 5 mSfc-o^TWRt 2>« 
[0 13 3] y-^7'>h#l85i;&tfBtiE*7— m" 

.fcy^-y-fT'Vh *«51^BB^^ v h T i cket304#& 

s*i*><, 

[0 13 4] Cin^5>fLT'?5'r7 7 >l-#lg5HCfc^T 
li, f 1 ©£§{1^1631 11*0 5, 06©i§^<LH]«t;: 
KfPL, h«}#^f8511l*0 5, 06©!!^©^ 

$-y h«l#^K314<hlRlHHdttfPL, BSE^y hTicke 
tSOSACfgoTSSRAuthor i ze Request £ £ It IS rJ M 
^Ift53l;:& 6 nettle, BHf^y hr- *frt>* 
8)Ih]»31 UtfUdti * *l£f8M v -> 3. ^|g317lc5M 6*1 

[0 13 5] C*ltCjRtLTI8orit-^#®53tCdB^T 
l±, *3©3J£gfl#S331, BRltfB*B332. BH^B 
SiE3M£333J5zO : 7 i '7- y h WSJbf JS?l6334li 0 5,060 

b^mbiebce u hffisu?3305i:^s/\'yv' 
n #3306 1 M^mm^i t mttmw&ttost 
*#jjiHi33io,!:**<7-y t-mmwm^&siuc&iG? 

TV "J hfOTB31#I853H*, 05, 06©B&© 
*$-y h*JBBS^335fc«BHBi::ttflP LT, f'Jffl 
[sl»5301^m3©2l§fi?S331^LTs8Rl^V U> 
v-Chal Ienge306t LT^^'TT'V h#851Ulj£y , 
My ^nfilSSOefc^S $?K/\7 ->afif5302,i: LT1S 
p7BS^®337l;:&*;b\ *6tc^^-y h«8'J?£My 
WBBBBB£?-/BHU?<DB5303*ai7J LTB 2 © 

[0 13 6] C*lKWr*^5-f7 , Vh#«51<0iM^'fe. 
05, B6Ci^tB»T«lJ, BWi'U^v'Challe 
nge306lC?>tLTBgRl^-V U>v ; EE;S : Response307*f:5SS' 
*l5= 

[0 13 7] CtlKttLTBqre— /WK53(C£l^T 
I*, BrT^* U>v f JSSResponse307t*S3ffiaSB{8^ 
«331-nMI**U VJ/ ->a {I5304tf Jfciij **lTB 

3 ©My 5/a*B532BtfB 2 ©BiiE?«iP^IS533lCBl 
6*i5o B3©My->a#S532l*, £BMy->afi|530 
4fc A y «> a BB H * ft o T» A y -> a ©Sifctf 1 B 
a.fc=5KBBMy5/affl5305«SBBB*«337fcB* 

(ST 5 3 0 1 ) . BrTBB*B337U:* £BAy->a 
€5302 i: \ y -> a {15305 i: ©— SHHI Sft U» 

(ST5 302, ST 3 3 1 6) , &S-&*£J&5307£B2 

©Bn?fiHin#B533lcB*o 
[0 13 8] BRTItBt#S322l±31?i^SiJ : &f1-B$LTfc 

y, 9t&BUtcs-3< *-r^x*>ys306*B2©BH 

^iD^®S33lc«*&LT^*o B2fl)BfiEWlffl*B5 
331*, *frv h BSUT- t B y fiJB rIBEIB £V~—f BBS'J 



? ©Iftg5303 <h £S/ \ y -> a {15304 1 £ -T AT. £ > 75306 
i:BRr-9--/«3a»*mrBff«Bftl?t*WSU C 
hta LTBEf * S« LTfflB LTBfif * y h^- 
*5308<hL (ST5 303) , B 3 ©£§{1^-19:331 £ 
?> LTBIiE^y y h Ti cket501 <!: LTBRJiifcQResu 1 1308 
£<kfcU:?5-<7 , > h#®51l::B* (ST 5 3 04) . 

[0139] £tu=»LT*5-f7:>hBB5iicBv'T 

t±, gSEf^'V hTicket501l±fg1 ©5M§fI#f8311Tg 
BS*U BUft'V h^-^SIOItLTHuaSf-^y h« 
B*B51HEBS*l«B**lT (ST5 10 1, ST 5 
10 2), 3eig©fiJBBRl*BT«B4-n*. 
[0 14 0] E*i{C«fcy*5-r7 , >h*«51frSBRT9- 
-/ *#B53lcB5*l*BK** y h 305# £ *>ft 3 
My->aBW:, ^©SBA^'JfflBpIC.htcl r^BoT 
*t < ©T\ B Rl-y--M#|g53Tliy \ y -> a BBl* 1 1S© 

>^M«T**i^7b4<)W?a«ps^7'^-trx©Hra^ 

*/\"-T**^S©ffi*, BAB 1 BMICBBT*. J- 
— tf*iJ«t£tt<6T*-t*--f'K££1i:&&A6;5 21 <t A^T* 
£. ^©^ICcfcy, -?7'r7 7 >h#S31li/\°7. r 7-K 
P W*BRl+t-/\*#S53^^46/cM=#l::Ba* N r C £.Tg. 
< , S^14© J: y Bl^BSE?^ y h 305^«^ LT n m 
y B^B»BBT*JBBRr*B*C it^T* ^» 
[0141] fefc, J-X±©SlB^Tli^5-<7'> h^S51 
tcfc^Tf'JfflBRl*B©7i;0 : lc#'SMy>'3.{i%H-B-r 
SBfiE.!: L75:6\ Bll^^y h©lX^H:-r^T©SB 
©BS/\y ->afii^BBys+BLTBSfBB#IS316lc|E 
BTfcBBt LTtSl\ ^©li^-, BffilB«¥©316 
£ L T <t y *§*©»* >/ ^ y ri W 
^StfSit©^ fiJffiBpr#HiC<!:©iiaaBtF^«:<fe »J 

[0142] c©<taic, *mmo>Bmco&M.->z.Ti± 

Tit. BH#lt<fc*^IEffiffl©Rl«l14^<fcy'>*<T- 
5pJBBRl<DJ6*BH*SttT*E£tfT»S 

[0143] (B 7 ©HfiS©fgHI) B 7 ©HBfi^SI©B 
SEv/X^Ali, BaE^^ry h£BB©BRj+t-M'U:3«f L 

[0 1 4 4] 01 71*, C©BliE->7.5 1 i*©^'P h^U 
^fyPhn/bv-^V^T*^ 017lCfc^T 
04<!:I65©H ^7-f7V h^l661, Bffi-y— 
S62, BR7-y--/^©63T-feoT, T^SlcBii^-T"^ I* 
< ffS^I664^iSJ)P LTt^o Sfc, BE^^ UVv^lSB 
Response303«:§ltfcBIItt-A^|g62)b , 'BijEg^Authe 
nticate Request301ft^lSaL7c ; ? l '7-y hBSU^T I D 
MBSU^S I 0£^mmr\£^£^t^tz^.m 
h^TSBJi^Registration601^BII^^y t- 
«S?S64'\jM^jS, BRlBScAuthorize Request602zy 
?'JffllH]Bk^<S: i t,%-5^, BRlB5t<Author i ze Request6 
02RlfB13E5 1 '7- y h Ti cket305^§lt7cBpT-y--/ ^'#S6 
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3^|gRlS5RAuthorize Request602RtfB|iE^'!r-y K305 

?xUpdate6035-|igaE^ ^-y K'gS^S^'VjM**. Cft 
left LT^KIS UTBliE^ -y KJBi&IfflRej ect606 
tl£j£u BrJ?- -V U>v>'Chal Ienge604*«fijffl[s]» 

krottfcyu:«lE]g&£.£5£j$;rnft3l&R k*<ht 
ft5,-£L B^* b>5>'lSS : Response605tf/<;*'7- K 

P WihiU&R 0 <t<Z>jlU£lotf LT n — k + 1 S©A7-> 

BSfrftofcteJRfcihfcftajStfltft*. 
[0 14 5] JKD^lCfcUx ->5-f7 , >K^IB6ni. 

frTCt4<, n OS TBSE?* y h 304*^81 LTSI 
JBBRpfcfifcEttfT*. Wffl[Hl»k^^5'r7 7 >h# 
S61 fr"=>3Mo TB Rl+t-/ <#I863 <t (iilil LfcBSE? 1 <r 
•y hff!#|&64?*xv*TSfc4&» BSET^-y h304 

[0 14 6] i-ZUbi/— J !r>X&t$'3VZSt~sX 

1 Slcfcl^TfciaSiigft*©^ •^5-<7'>h?©6 
1, BSE"?- l^mi. /<*«63?a5o 
Ts *eiciSIiE^ 1 '^-v h<ga?&64£j&l)QLT^£= $ 

©3l£:Sft££>liv IggE^'ir-y ^•^«^t■r2>i:<t i E>^c ; ^■ 
0D^'JffilHlak^gS■r2.^'!r , y HS&gS^MStfH*? 1 

tf. — ajronsss^K^fc^tcs^o $ft* BBE1t-M# 

«62lcfit"»TH 5 ©ISgEtJ— /\"^ffi32<tSft*<£ti, B 
[0 14 7] Sfc. BpJ+T- /^#e63lCt5t^T0 5<Dig 

**2<DSJfc£«¥«632* Ify h»©SMBWBffiO* 
J|*ffft5B2<3!>»Mtefl«lltWP#«633*Ktt» -SB© 

[0 14 8] JKO^ y h«^«a^lB!611i:LTl*x 

*Tft31)QllE&£j&&aLT«J$3"ft ; 5<> SMs S2(Di 
ffittltSW*«612x 633£LTtt* wa.imaigiSflHS 

is?**. ha»*B^#®62itLTi*. mxiz 

8632 i: LTliv gL*£rt¥J^£HW©*M&WW'* 



^7i-XgIif-? OMMMttdfcffft 3 ttSEItt <h 

ft«a-py p Aes«<*u:K» l> ^3 AiB» 

[0 14 9] W±(0«fc-5lc«j|E*ttftBiiE->^7-A<Di!j 
f¥lE"3l/»TH 1 9*#B8Lft#5iJtE"3"*. CCT'li, 
i2iIS3?Authenticate Request301ii' t BIiE ; ? l ^'y h^Sb 
0»n *itftd»&l::-3f»Tltt«ra. 

[0 15 0] *r» 

h^SeiSWBBE-t— /^«62ltJJW-*DM^liE 5 , El 
6©*&£«£ra«T*» WSMfcttBSEI*— M¥«62«fc 
y^^-CZV h#S61^l8!if ^r-y hTicket304^SI6 
fcJSU <7 5'T7 , >h-^S61lCfc^Tli. C©t 

«811#ff»5. SftBB-9— /W»62l=a3t*Ttt. IS 
|iEg5)<Authenticate Request301* s 8lXdJ*tlf;:#8)[H] 
&6201 li^lfty \ y -> a #8325Rt>'BIiE^tt})Q^I8:328a) 

nfrf>r7 hsa*&^#®62nct,S5n. +r-Aitsu 

?6202ttBH?f*M*«328® ttt^^-^ y h SKflbi«¥ 
«62UC*aiS*U ^^-y hBSiJ?^fiE#S327T^«* 
nfc^'lr -y h!«SiJ?6203tiig!I : f ( i JSn#f6328<D«6^ 

[0 15 1] ha^Ji^#IS62l(±, ^^-y KM 

gij?6203 1 V— /«JJf 6202 i: *l2t]!H]Sfc6201 <t =&3I^ L 
TBliE^'ir > y K^aS^7 r -'5 , 6204^:ifi£U S2 
Oill§ffl^lft321^^-LTlSiI^^'y KBffBBJBSReg 
istration601tLTBlEf ^'y h«a*«64lc»* (S 
T 6 2 0 1 ) . iin^gttfcBijE^>r-y h«S*S64li 
^->-<y K"JXh*flL7fe l J. BljE^^-y h*6fT«B 
Ji^Registration60lA^^.^n/c^-atC> f-'T a J KM 

[0 15 2] emicMLT^5-<7'>h#l661lcfc^T 
ti. BSE^-tr-y hTicket304tim 1 ©jM§fi?®311Tg 
fs^ti. BSE^^-y hf- ?3H0^1StiJ*tiT^^ y h 
«JS*3¥«611fcaSS*l* 8 ^yhfla*«W«6" 
liBliE^ ^ -y K ^ 31 1 05-t»— V ^ltSiJT-31 01 ^ WES^' 

*»yflJffiRlBEtt£LTmiB3l;:«aL (ST 6 1 0 
1) » fiJfflBRl*WfflKfiaHl6101tf-^A5nfc«^lCs 
IgfiE^^-y hr- 5»3111 =£!gl ©SSfi^®3ll*^L 
TBli^^-y hTicket305<!:LT, 5£y fiJ^RJIi! 
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»fr 6 3 1< Z. t. IC <fc y »fc*JBI3»6102* ( s T 6 1 o 
2) mi £DjMS<I^©311^^LTSgpIS3<Authorize R 
equest602<hLT\ £gpr^-M"^a63tC3MU (ST 6 1 
0 3) , * bit, 18SE^>y Kx-^^eiXaiLfcSSai 
0»3112££SA-;/>'ii*B317t;:2i£ o 

[0 15 3] £ttldttLTfSFJ+t-/^l£63lcfc^T 
«v BE^y Kicket305RTJBeIS:&Authorize Req 
uest602t±m 3 ©S§{l^ie331T§fi* tU BE5 1 * y 
h 7 r - 3301 fflRHJ * tlTBE? «E*B333K5M 6 
*U *JBE»6301#BUli«!f*iT*-$-y hH«r»a**S63 
IK&Sft* (ST63 0 1) o BrIW-BS*»332» bie 
?«E*«333aiF?$-y Hr«l«j£*«334ttH5» El 
6©»&£BBHBfcttfPU fcfcU t»— /BHU763 
02tt*^y hff&W£*B334«>Bfr?4-y hBBBa* 
¥«63llc«»BS*U *Ba»6303W:*$-y hM«T*BS 
#JSK31StfB2©SLB£«¥«632lEBSft*o 

hBfrfS5<#«631(*. ^SJbilta6303*^K.6n^<t, 

•> h BSD? 3305 1 V-i ^BS'J?6302 £: f IJB0&63O1 
£*3«6LTBE*$-y hJBUI»R*BST f -r S*6304££ 
BU B3fl>BWi*B331«fl'LTBB5 1 *?' KBffi 
Mff^Update603t LTBE^y htfil^ B641C& 

* (ST6 3 0 2) tilfcfc, 5ftlBEB6301**<D** 
5fUfflIsIB6306i:LTB3<7)*a/Ny>'3.#®336'\3S 

BE**y hmm^mMit. be*** tmmwm 

B5ajpdate603tf#ilSnfc«$(!:» KB8U?* 

^r{Bz3\ »Br*»yfjffl?r«E«*a%r«tBn9 i 

y h S&MSffJg j^Upda t e603tf <fc *> & 3 f UB EB £ © 

MJ7>*©?iy*MpTBEB£*T<i£i mi^ iel 

< ftttfttiBE^y HEB31»lReject606*By B 
To BE**y Kffi»feii«]606l4BRl-y— M*S63ltfe 
^Ts m3©a§{f#S331^LTBIjE^y y hffi»fe 
ilfl]7 r —S'6305^ LTBE**y h M»rJizrv#B63U;: 
SSft*, ^7 hM$r*gjf^B631li, *«My5/3. 
fil3306^ © £ * \ y -> a B331 2 <h L TB rTB^# 
®337lcS?.ft\ BE**y hJgBilfi]*-* 63056^ 
^Sn^(!:C:tl*ffl]±-r?.o M2(DfL»^fl6#^632 

W2)!liiSD6303*W^.6n«<!:x x— 
U > v>SLSSt6307£ST7i (C 5 > # A lt£fi£ LT^ 2 <D 

nmata¥fa6i3iz7&* ££*>&■* b 3 ©BBfls*«33i 

£}>LTBr7^* UVv'Chal Ienge604<!: LT-95-<7 , > 
h#B61U:3S£ (ST 6 3 0 3) . 
[0 15 4] cnic3«fLT^5-f7'>h#S61^fc^T 
(iv BrJ** IxVv-Chal lenge604&B 1 <D)£g<f^B31 
1 T»«**U 5>&B61 03#Ba * *lTB 1 CD 

BttttB«»*»612lcB5n* (ST 6 1 0 4) . & 
WW ->a^S317li. *JBB5T*«e«ia»6101## 



a{fi3113^^Ts /\y>'affi3113lc*$&[H]B3112<!:f!Jffl 
[g»61 02 <h (DM ^ r ^ s»o/ \ y > a H *ff ft 
oTs tt*fiO*S/\y ->iB6104*. BKDBfltfMtB 
n#&6l2lcS3. B 1 ©Bffi«BS»*«612l*. *l£ 
|8^I#|lllfii6iifll6101*?4-^.6tlT^5B-&lc> £®a 
y ->att6104£* + U->5?a»6103i:<DHT*lf y h«© 
SHS«)BS«BB*ff «S.*«My ->nfil6105* 
IflcL. B1 ©BWlWWlU&rt-LTBRr** L'VS? 
tSSResponse605<!: LTI2Rl-y-A3M&63l;:&£ (ST 
6 105, ST6 10 6)„/Vr>rIIHi)W$ 
*— £Att£B*©BSRtf5>*i*tt*fcoT^*B 
y. £©B&£BAyv'3.{l6105t;J:AX , 7- KPW. SL 
BR ORTJ^V UV-^SUBtSfflSftt^BSBlcttlfB-r 
tfZ'Zlt^tctb. Z. CiWL&W \r>2 fit6105lc 
J:y/<7."7— KP W*«l*iEa*a— Ct^Tjk 

fclt 5/ \ y > a SIB H ©SSjtzi^ < ft tonz ^ S 
46. il <»$>W \ y -> a ^§61 04fr e:^SM'r>ai* 

fc\ /N^i/aSIBtt-BlcliB^SWIJcy^l 0 0Btt± 
lSSTfe^<!:*n. BWft«BT*ntfB**B^fcB 
^•J: y tKj$^iffiS<)^ft^. ^5= 
[0 15 5] C:ntcMLTBRl-y-/^S63lCfc^J 
BrI^ -V U y -^JSSResponseeOSliB 3 <D5M§'fi# 
S331 T§il* n. BiL^B/ \ y > a.{§6308tfSXtii 
If 2 <D8ffft6<)!SS?a#S633lCjM6n^ ( S T 6 3 0 
4) o B2<OBflSWB«ffl¥«633li, ^-vUV5?aB6 
307 ,t m^S^ \ y -> ^ tii6308<t t: y h B4)BB 
WfiSffijSlt^^Tft ^S/ N y -> nfil6309^?#Tm 
3CD^S/\y->^*lft336lCill^ (ST6 3 0 5) „ S5 
3 <D^S/ \y ^S336t±. ^S/ \ y -> afi!6309tcf ij 

mmmio6izi®mT zmmcon y -> ^ »B*f?& ^> t< 

fi*©Z^SA y -> a{l3314^|gR7B?>-D-^337ltjM 
^Sc BRTB^*B337ttH5» EI6©J«^<!:I^«(til3fP 
U iSRiiiSnx— ?3315^ll3©jMg«^331«-^L 
TBRT31HIResult308<!: v-f T 7 ^ h*S6Hc5i 
y, <73-<T> h^i&6HCfc^T§{I*tl?>o fc/cU 
BliE^-ir-y hJg*fejiH3Reject606£Dg^I^<t y ^-BAy 
-> iB3312©«««tf»lt**lfe«^lc «C ©PS y Tlift 
^ (ST6306, ST6 3 0 7) „ C©*BK*»Js 
^ ^ f 7 > h #B61 14; \°7. "7— KP W5BRl+r-/ \'#B 

y h 30S^ffiffl LTBBCDBpT+t-y <#Btc« LT*JB 

[0 15 6] ftfc\ tX±<DUlB^7-li^7-<7'>h-#IS61 
lcfc^Tf'JfflBRl? ; liS©fcO : tc^BAy->ii.fil^ftlCr 
%BBtLfciy» BB^^y h ©^#B§U"r ^TWBB 
£D^B/\y -^ifii^^SuftB LTBSIBtf ^B316lcf5 
1fr**Sfi£<!: LTtat^ BSIH1f#IS316 
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[0157] iioDcfc^^s d<DHjfijfj«iTi±v mm?* 

v htfMS^n&l^SSCOTTs BSE*** h**g»<7> 

[0158] (SI 8 <DSt8S<DJS!«) SB 8 <DStB£H51S©B 
[0 15 9] 0 2 01*. ZKDSSliE^X^AW^P ha;U 

=&gvr:7p hai^-^y^aT'ft?. 02 okjsi^t 

El 4<fcKfc*<7>tt\ fPzi^TZ/ h#fft71. BSE?- A 
?!S72;&m§pJt>--V S#S73T*£ oT, * S fcSB 2 £>B 
pj-y— /t#«74*SUH]LTV*. BqTS^Author 
ize Request701tffUE[H]£itk£-<t i fc& ; 3j£L fgpfg^Au 
thorize ReqiK^OI&tfBBE^y hTicket305^§^ 
fcfgoI+J— I ^S733^|goIg^Author i ze Request701R 

imwi-'rv hsost^m-ttiLtc^-^-y nasu^T i d 

tV-*W&&S I D<h*UffllH]&k££<tfc&o7i:BliE 
f^T7h ®Mf$^ I nqu i ry702£BIiEt>—y ^872$ 7hte 
*2©BrT9— /t*«74'\a£*jSu CftlC»LT£»H= 
fSUTBIiE^y hJ§*KiWReject705*i«jI*n*^ 
BrI^-V UVv-'Chal Ienge7036^fijffitsl» k ©ftfoy 
0*ft*J:3^*ftfcSJRRk*£'fea:3jSu B°T^ 
-V U>i>'J&gResponse704#/\°3. , 7- KPWtSJfcR 0 
£ (Dmmzti LT n - k + 1 &o» \ v -> i3l * H *Sfi L 
fcteJEtca - 6 K R k £4>8KfettiiBa*a>jtJ*£fTfc o 7c*S 

[0160] C6>«aic<l:tK ?5^7'>l^8:7Hi/\° 

x^-kpw^bri^-/^^. m 2 obrj?-<k# 

IS74^46fcSgH#tcB^* N -ril<!:^<v n SSfT'BSE?- 

h304-¥>jE«T*n/=BiiE^^ , y vso^mm^T%m 

71^6BRl i T-/^®73* fl- LTBSE^ h L 
ftBEIt- M^I8723:7cttM»r L7cSH 2 ODBpT^- 
WAizlZ-oTJ-JLytTZrctb. BH^^y h304«-«[ 
&S)BrJ+>— m~^S73. 74T-#miC#imzitSZ.te*>C>£T 

[0 16 1] ZODJ^fc^n h=i;l/->-'5 r >7.^JtOB 

SE->xxA©«fi)6ico^TEi2 1 £#BBLfc#efaB8-r 

5 0 02 1 tfe-L^Ttiia 1 5 <tS&££>l±. o^^Ty 
h#«71s Bli-t-/^S72, BRr+*—M-#!S73T-25o 
T, *8ieSI2©BoItJ— /\"#IS74^j6ljQLTt^ t , * 
7c. I^JTy h#-S671U:fc^T01 5CD? ^-TT'V V 
#&51<!:g&£tfHi, BEE*** h-*«*#tS <!:<!: 
fOWll2iak5fIt5f^7 h«JHEl#«711* 
hfiB#**511fl!)«toyicliWtx tf-y hS<D8Mtf! 

wms«aui*?5ft-5* 1 ©»mswiu»p*«712*b 



tf, -®(Dl£mZ&*!>tc&lC&Z> a $7c, BliE+t-/^ 

IB72U:fcl/>T01 soBiiE-y-— Jwm2£m-&z><oit. 

^ft€S^S721^IS^v — ^SS*g£&*f>7c,SlCfc 
So Sfc. BRl+t-/^S73lCj5^Tll1 5©BRlt<— 
/^SS3i:S^:S(7)li. BU^'V hO^-v hittS'J? 

m2©BRi-y--/^ffl:74(±BRi-y— 

y ^873 i 1 
[0 16 2] f^ry h«Jt«3S*«71l£LTUk 

tHSfa#©712, 733<hLT(i. fi^ttmislKtHM? 

hSI?f*S#lft721«»:LTli. ^J^-tfx- 

/W7.<!:©li-&-B:lcJ:y«^T*So *2©SL»^# 
K732i:LT«. §L^RE#IS324 < !:^l«l©«fi)6A ,; ffiffl7- 

A^SEIX y RTBft»aT ; ^P ^5 i*IBS«Ei*lcIBa U 
^P ^ 5 AIB0S«»:^SX y <t ft***>-e-fc«(iElc <fe 

ygtsiLTtaiv 

[0 16 3] ^tDJcd^BE^nfcBiiEi/X^ACOlf] 
fFtJ:o^Tlil2 2^#BBL%*f ; SiK0^'rs„ dilTtis 
BliES3cAuthenticate Request3016^BliE5 i 'ir-y hWSEtl 
[slSfn ^£^ts.om^z-o^Tmmt^> 0 

[0 16 4] 3.-+fB£E#IHltfcltS'5'5-<7'> 

h*S7iso : Bii-y— A#K72Kfctf;5iJ>m±ia 1 5, 
01 6«>«*t«ffH«?. mmmzitmm j y—j^& 

72 e fcy^5<7 7 > h^7T\BH^'!ry hTicket304*i< 
26n«. tctzU ^5-ry»>h*S71»c*it''TW:» 
ODt^OD^^y KfiiJt^aSIKOllf^S^^V hSJt'g 
S^S71 1 6^7^ d . $ fcBSE^-y <#«S72 fcl^T 
li> BliES3<Authenticate Request30l6 x 6UtilT*-ti7i: 
^5aiH]»7201 te&W \ >> -> a ^S325SO-'BiiE^l)n^ 
S328(OlS*^'>-y h»?reS#®72nct,jM5*l. tf- 
/ ^ItSiJ? 7202tiBIE?«lia^©328a3«*^'!r >v h 
1S*S72nct,^5n. y^-y h§l]Sy?*^l6327T- 
^fiE* tl7=^^ V h^SU?7203liBliE ; ?^IlP*S328<7) 

tt/r^y h^ea^S72i^t,3i6ti*c h 
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«ff«a*«721l«6tTLfcx$-v h UXh^fiLT 
fcy. hSm?7203<h^-MittSU?7202i: : f¥8)[2] 
&7201 tft V f Uffl RTIBHUfc^^rfil^ LT<D*n»lH]S72 
OlODH^x^-y h-'JXhtciitaLIBtfrS (ST7 2 0 
1) . 

[0 16 5] cnfc»LT*7-r7 , Vh*«71fca8l/ k T 
14. BSEx-Ty Hicket304«mi ©ji§ffl?IS:311T-§ 
■fs**U BSEf^v hx— *3110tfaWBS*lTtaiBx* 
•y h«Jt«S*S7niCjM6nSc Buia^^y h«J#e 
3f 1871114. Blffx-i^y hf- «1l0*-9— /*«»J?3 
101t»iS^*T«l#U BEx** t*x-*#SlMi 

(ST 7 1 0 1 ) . *JJlBM«Si!lilW7101tf£AS 

nfcit^i!:, BEx^y hf- ?3iii*mi ©&g<if 

|&31l£:frLTBExx-y Kicket305,!:LT. $fc* 8 

L7cW>&!EH»fre3l < £ <t yf#fcf!]fl§[H]#7102£ 
(S T 7 1 0 2) mi ©3MSffl?®311^LTl2RlS 
^Authorize Request701 <h LT> ^-fl^tlBRTy-— 
©73lCjMf (ST7 10 3) * * SKBExx-y hf- 
2 frSlXiil L7t#55bl2]»31 12£#lft/\ -y -> n*S317tc 
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[0 16 6] CftlEj&LTBRT9— /<*«73lca3l/»T 
14. SSEf^7 l-TicketSOS&tfBRJSsRAuthorize Req 
uest701(*» 3 ©2£a«#«331?S«**U BliEx* ■> 
h x-*3301#l*ai*ftTBII?«IE¥«333fc2£S 
*X. *Jffl0»73O1#l!iaa**lTx^-y hKtT««*«73 
HCB54VB (ST 7 3 0 1) c 
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(CTSWfciMfU fcfcU *r- ^BS'J : ?7302t4x'T-y h 
*SJb¥'JS#l5334CDli*^^ -v h M^rSS^ £6731 IC 1 3M 

en. *jaaai7303t4x^-y i»b*t«ji#»73i;skms 

2<OSUR£«¥«732tcaS&n*. f ^7 f If 
«731t4fM?Lfcx'XV h'J7h*WLTfiy, *T$5b 
Hffl7303iP4A5tl*i:» xfrv 3305 
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[0l8ll*6t, BIE^^-y hOffiffl0«*«aT 
SBiiPT^-y hes^e^ta^^©?^ BliE^'T-'y 
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